Action not permitted
Modal body text goes here.
CVE-2013-1518
Vulnerability from cvelistv5
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-06T15:04:49.470Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "GLSA-201406-32", "tags": [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred" ], "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "name": "[distro-pkg-dev] 20130417 [SECURITY] IcedTea 1.11.10 for OpenJDK 6 Released!", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-April/022796.html" }, { "name": "RHSA-2013:0758", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0758.html" }, { "name": "MDVSA-2013:145", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:145" }, { "name": "TA13-107A", "tags": [ "third-party-advisory", "x_refsource_CERT", "x_transferred" ], "url": "http://www.us-cert.gov/ncas/alerts/TA13-107A" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://blog.fuseyism.com/index.php/2013/04/25/security-icedtea-1-11-11-1-12-5-for-openjdk-6-released/" }, { "name": "SSRT101252", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://marc.info/?l=bugtraq\u0026m=137283787217316\u0026w=2" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0130" }, { "name": "oval:org.mitre.oval:def:19451", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19451" }, { "name": "SSRT101305", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880" }, { "name": "RHSA-2013:0757", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0757.html" }, { "name": "HPSBUX02922", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0124" }, { "name": "openSUSE-SU-2013:0777", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-updates/2013-05/msg00017.html" }, { "name": "MDVSA-2013:161", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:161" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jaxp/rev/38d4d23d167c" }, { "name": "openSUSE-SU-2013:0964", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-updates/2013-06/msg00099.html" }, { "name": "RHSA-2013:0752", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0752.html" }, { "name": "USN-1806-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "http://www.ubuntu.com/usn/USN-1806-1" }, { "name": "oval:org.mitre.oval:def:16702", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16702" }, { "name": "59141", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/59141" }, { "name": "SUSE-SU-2013:0814", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00007.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "name": "oval:org.mitre.oval:def:19705", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19705" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released/" }, { "name": "HPSBUX02889", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://marc.info/?l=bugtraq\u0026m=137283787217316\u0026w=2" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2013-04-16T00:00:00", "descriptions": [ { "lang": "en", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions.\"" } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2017-09-18T12:57:01", "orgId": "43595867-4340-4103-b7a2-9a5208d29a85", "shortName": "oracle" }, "references": [ { "name": "GLSA-201406-32", "tags": [ "vendor-advisory", "x_refsource_GENTOO" ], "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "name": "[distro-pkg-dev] 20130417 [SECURITY] IcedTea 1.11.10 for OpenJDK 6 Released!", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-April/022796.html" }, { "name": "RHSA-2013:0758", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0758.html" }, { "name": "MDVSA-2013:145", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:145" }, { "name": "TA13-107A", "tags": [ "third-party-advisory", "x_refsource_CERT" ], "url": "http://www.us-cert.gov/ncas/alerts/TA13-107A" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://blog.fuseyism.com/index.php/2013/04/25/security-icedtea-1-11-11-1-12-5-for-openjdk-6-released/" }, { "name": "SSRT101252", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://marc.info/?l=bugtraq\u0026m=137283787217316\u0026w=2" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0130" }, { "name": "oval:org.mitre.oval:def:19451", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19451" }, { "name": "SSRT101305", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880" }, { "name": "RHSA-2013:0757", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0757.html" }, { "name": "HPSBUX02922", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0124" }, { "name": "openSUSE-SU-2013:0777", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-updates/2013-05/msg00017.html" }, { "name": "MDVSA-2013:161", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:161" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jaxp/rev/38d4d23d167c" }, { "name": "openSUSE-SU-2013:0964", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-updates/2013-06/msg00099.html" }, { "name": "RHSA-2013:0752", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0752.html" }, { "name": "USN-1806-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "http://www.ubuntu.com/usn/USN-1806-1" }, { "name": "oval:org.mitre.oval:def:16702", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16702" }, { "name": "59141", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/59141" }, { "name": "SUSE-SU-2013:0814", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00007.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "name": "oval:org.mitre.oval:def:19705", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19705" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released/" }, { "name": "HPSBUX02889", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://marc.info/?l=bugtraq\u0026m=137283787217316\u0026w=2" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2013-1518", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions.\"" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "GLSA-201406-32", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "name": "[distro-pkg-dev] 20130417 [SECURITY] IcedTea 1.11.10 for OpenJDK 6 Released!", "refsource": "MLIST", "url": "http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-April/022796.html" }, { "name": "RHSA-2013:0758", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0758.html" }, { "name": "MDVSA-2013:145", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:145" }, { "name": "TA13-107A", "refsource": "CERT", "url": "http://www.us-cert.gov/ncas/alerts/TA13-107A" }, { "name": "http://blog.fuseyism.com/index.php/2013/04/25/security-icedtea-1-11-11-1-12-5-for-openjdk-6-released/", "refsource": "CONFIRM", "url": "http://blog.fuseyism.com/index.php/2013/04/25/security-icedtea-1-11-11-1-12-5-for-openjdk-6-released/" }, { "name": "SSRT101252", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=137283787217316\u0026w=2" }, { "name": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0130", "refsource": "CONFIRM", "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0130" }, { "name": "oval:org.mitre.oval:def:19451", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19451" }, { "name": "SSRT101305", "refsource": "HP", "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880" }, { "name": "RHSA-2013:0757", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0757.html" }, { "name": "HPSBUX02922", "refsource": "HP", "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880" }, { "name": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0124", "refsource": "CONFIRM", "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0124" }, { "name": "openSUSE-SU-2013:0777", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2013-05/msg00017.html" }, { "name": "MDVSA-2013:161", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:161" }, { "name": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jaxp/rev/38d4d23d167c", "refsource": "CONFIRM", "url": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jaxp/rev/38d4d23d167c" }, { "name": "openSUSE-SU-2013:0964", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2013-06/msg00099.html" }, { "name": "RHSA-2013:0752", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0752.html" }, { "name": "USN-1806-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-1806-1" }, { "name": "oval:org.mitre.oval:def:16702", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16702" }, { "name": "59141", "refsource": "BID", "url": "http://www.securityfocus.com/bid/59141" }, { "name": "SUSE-SU-2013:0814", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00007.html" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=952646", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "name": "oval:org.mitre.oval:def:19705", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19705" }, { "name": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" }, { "name": "http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released/", "refsource": "CONFIRM", "url": "http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released/" }, { "name": "HPSBUX02889", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=137283787217316\u0026w=2" } ] } } } }, "cveMetadata": { "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85", "assignerShortName": "oracle", "cveId": "CVE-2013-1518", "datePublished": "2013-04-17T15:00:00", "dateReserved": "2013-01-30T00:00:00", "dateUpdated": "2024-08-06T15:04:49.470Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2013-1518\",\"sourceIdentifier\":\"secalert_us@oracle.com\",\"published\":\"2013-04-17T18:55:01.850\",\"lastModified\":\"2022-05-13T14:52:58.923\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \\\"missing security restrictions.\\\"\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Java SE versi\u00f3n 7 Update 17 y anteriores, versi\u00f3n 6 Update 43 y anteriores, y versi\u00f3n 5.0 Update 41 y anteriores; y OpenJDK la versiones 6 y 7 de Oracle; permite a los atacantes remotos afectar la confidencialidad, integridad y disponibilidad por medio de vectores relacionados con JAXP. NOTA: la informaci\u00f3n anterior procede de la CPU de abril de 2013. Oracle no ha comentado sobre las afirmaciones de otro proveedor de que este problema est\u00e1 relacionado con \\\"missing security restrictions\\\".\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:C/I:C/A:C\",\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\",\"baseScore\":10.0},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:*:update17:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.7.0\",\"matchCriteriaId\":\"9CBAECF5-3BFA-425A-A43F-8AEC3489A70F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C27372B-A091-46D5-AE39-A44BBB1D9EE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4B153FD-E20B-4909-8B10-884E48F5B590\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update10:*:*:*:*:*:*\",\"matchCriteriaId\":\"F21933FB-A27C-4AF3-9811-2DE28484A5A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update11:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2B20041-EB5D-4FA4-AC7D-C35E7878BCFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update13:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3C3C9C7-73AE-4B1D-AA85-C7F5330A4DE6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update15:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D8BB8D7-D5EC-42D6-BEAA-CB03D1D6513E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB106FA9-26CE-48C5-AEA5-FD1A5454AEE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"5831D70B-3854-4CB8-B88D-40F1743DAEE0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*\",\"matchCriteriaId\":\"EEB101C9-CA38-4421-BC0C-C1AD47AA2CC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update5:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA302DF3-ABBB-4262-B206-4C0F7B5B1E91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update6:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9A8EBCB-5E6A-42F0-8D07-F3A3D1C850F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update7:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CD8A54E-185B-4D34-82EF-C0C05739EC12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update9:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FFC7F0D-1F32-4235-8359-277CE41382DF\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:*:update17:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.7.0\",\"matchCriteriaId\":\"D80851A9-BF3D-44EB-897A-5E992B98DBE1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E44FC8AF-F76F-4A8E-8D03-4F8BCA8CB031\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"6152036D-6421-4AE4-9223-766FE07B5A44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update10:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE8B0935-6637-413D-B896-28E0ED7F2CEC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update11:*:*:*:*:*:*\",\"matchCriteriaId\":\"30B480BC-0886-4B19-B0A5-57B531077F40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update13:*:*:*:*:*:*\",\"matchCriteriaId\":\"7FA1990D-BBC2-429C-872C-6150459516B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update15:*:*:*:*:*:*\",\"matchCriteriaId\":\"8DC2887E-610B-42FE-9A96-1E2F01BF17A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"D375CECB-405C-4E18-A7E8-9C5A2F97BD69\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"52EEEA5A-E77C-43CF-A063-9D5C64EA1870\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update4:*:*:*:*:*:*\",\"matchCriteriaId\":\"003746F6-DEF0-4D0F-AD97-9E335868E301\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update5:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF830E0E-0169-4B6A-81FF-2E9FCD7D913B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update6:*:*:*:*:*:*\",\"matchCriteriaId\":\"6BAE3670-0938-480A-8472-DFF0B3A0D0BF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update7:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EC967FF-26A6-4498-BC09-EC23B2B75CBA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update9:*:*:*:*:*:*\",\"matchCriteriaId\":\"02781457-4E40-46A9-A5F7-945232A8C2B1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:*:update43:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.6.0\",\"matchCriteriaId\":\"5A197FD4-86F0-4186-BA1E-881C53870ED1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update22:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF13B96D-1F80-4672-8DA3-F86F6D3BF070\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update23:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1A2D440-D966-41A6-955D-38B28DDE0FDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update24:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1C57774-AD93-4162-8E45-92B09139C808\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD7C4194-D34A-418F-9B00-5C6012844AAE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update26:*:*:*:*:*:*\",\"matchCriteriaId\":\"DAF7D86B-1B4D-4E1F-9EF0-DA7E419D7E99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update27:*:*:*:*:*:*\",\"matchCriteriaId\":\"F0B82FB1-0F0E-44F9-87AE-628517279E4D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update29:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0A67640-2F4A-488A-9D8F-3FE1F4DA8DEF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update30:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D60D98D-4363-44A0-AAB4-B61BA623EE21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update31:*:*:*:*:*:*\",\"matchCriteriaId\":\"23CDA4F0-C32B-4B08-A377-7D4426C2F569\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update32:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E76476E-4120-46A9-90A8-A95FE89636CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update33:*:*:*:*:*:*\",\"matchCriteriaId\":\"97A84689-0CED-404F-8DC3-708BEB37D2CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update34:*:*:*:*:*:*\",\"matchCriteriaId\":\"738EC3E5-A4EB-47FE-9C9A-7C8E8C669765\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update35:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF56E0D9-612D-4215-9C76-560AE0661A05\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update37:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA717604-4BB0-4968-B258-7C9F884016FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update38:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA71FCF4-580F-432D-AADC-65A2A92CEBC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update39:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1E1A8F3-5A63-401E-9BDA-ACCA30FF6AC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update41:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C91517E-4C81-4D09-9FCB-B7AC769C7107\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CBCD143C-057D-4F42-B487-46801E14ACF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_1:*:*:*:*:*:*\",\"matchCriteriaId\":\"09027C19-D442-446F-B7A8-21DB6787CF43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_10:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A0FEC28-0707-4F42-9740-78F3D2D551EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_11:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3C5879A-A608-4230-9DC1-C27F0F48A13B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_12:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C71089A-BDDE-41FC-9DF9-9AEF4C2374DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_13:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DBB6B73-8D6B-41FF-BEE0-E0C7F5F1EB41\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_14:*:*:*:*:*:*\",\"matchCriteriaId\":\"12A3B254-8580-45DB-BDE4-5B5A29CBFFB3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_15:*:*:*:*:*:*\",\"matchCriteriaId\":\"1DB1DE6A-66AE-499B-AD92-9E6ACE474C6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_16:*:*:*:*:*:*\",\"matchCriteriaId\":\"AADBB4F9-E43E-428B-9979-F47A15696C85\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_17:*:*:*:*:*:*\",\"matchCriteriaId\":\"49260B94-05DE-4B78-9068-6F5F6BFDD19E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_18:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4FDE9EB-08FE-436E-A265-30E83B15DB23\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_19:*:*:*:*:*:*\",\"matchCriteriaId\":\"BE409D5C-8F9F-4DE9-ACB7-0E0B813F6399\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_2:*:*:*:*:*:*\",\"matchCriteriaId\":\"7158D2C0-E9AC-4CD6-B777-EA7B7A181997\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_20:*:*:*:*:*:*\",\"matchCriteriaId\":\"B08C075B-9FC0-4381-A9E4-FFF0362BD308\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_21:*:*:*:*:*:*\",\"matchCriteriaId\":\"F587E635-3A15-4186-B6A1-F99BE0A56820\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_3:*:*:*:*:*:*\",\"matchCriteriaId\":\"90EC6C13-4B37-48E5-8199-A702A944D5A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_4:*:*:*:*:*:*\",\"matchCriteriaId\":\"2528152C-E20A-4D97-931C-A5EC3CEAA06D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_5:*:*:*:*:*:*\",\"matchCriteriaId\":\"A99DAB4C-272B-4C91-BC70-7729E1152590\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_6:*:*:*:*:*:*\",\"matchCriteriaId\":\"30DFC10A-A4D9-4F89-B17C-AB9260087D29\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_7:*:*:*:*:*:*\",\"matchCriteriaId\":\"272A5C44-18EC-41A9-8233-E9D4D0734EA6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_9:*:*:*:*:*:*\",\"matchCriteriaId\":\"81C2C04D-D4BA-4C87-9609-C53AA63BFF19\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:*:update43:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.6.0\",\"matchCriteriaId\":\"301A4458-C36E-40AB-B97C-5273F6A3E937\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*\",\"matchCriteriaId\":\"301E96A3-AD2F-48F3-9166-571BD6F9FAE3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*\",\"matchCriteriaId\":\"6C9215D9-DB64-4CEE-85E6-E247035EFB09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*\",\"matchCriteriaId\":\"352509FE-54D9-4A59-98B7-96E5E98BC2CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3EC13D3-4CE7-459C-A7D7-7D38C1284720\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*\",\"matchCriteriaId\":\"8CDCD1B4-C5F3-4188-B05F-23922F7DE517\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update27:*:*:*:*:*:*\",\"matchCriteriaId\":\"1824DA2D-26D5-4595-8376-8E41AB8C5E52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update29:*:*:*:*:*:*\",\"matchCriteriaId\":\"B72F78B7-10D1-49CF-AC4D-3B10921CB633\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update30:*:*:*:*:*:*\",\"matchCriteriaId\":\"60D05860-9424-4727-B583-74A35BC9BDFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update31:*:*:*:*:*:*\",\"matchCriteriaId\":\"F85DB431-FEA4-42E7-AC29-6B66174DCD9E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update32:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB7E911C-C780-440A-ABFF-CCE09061BB4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update33:*:*:*:*:*:*\",\"matchCriteriaId\":\"0381EE39-2F60-49FD-A63A-B9E81C9033CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update34:*:*:*:*:*:*\",\"matchCriteriaId\":\"9AD75455-B7F0-4F42-98E7-CAA43787D606\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update35:*:*:*:*:*:*\",\"matchCriteriaId\":\"3BF0FD06-3953-49AB-A9AA-ACB6883E2D2E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update37:*:*:*:*:*:*\",\"matchCriteriaId\":\"62823E8E-99CF-40DB-B43E-CBA4E9A2F916\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update38:*:*:*:*:*:*\",\"matchCriteriaId\":\"FEA04B0D-D4E3-497D-9564-046B1CDA2342\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update39:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD3522AD-6CE5-43A3-A108-FBEEE4C226B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update41:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2F3B6EB-694F-44E9-9502-8487DCEC84BB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3A4FEC7-A4A0-4B5C-A56C-8F80AE19865E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*\",\"matchCriteriaId\":\"722A93D8-B5BC-42F3-92A2-E424F61269A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*\",\"matchCriteriaId\":\"775F2611-F11C-4B84-8F40-0D034B81BF18\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*\",\"matchCriteriaId\":\"F20FDD9F-FF45-48BC-9207-54FB02E76071\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FA326F5-894A-4B01-BCA3-B126DA81CA59\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*\",\"matchCriteriaId\":\"228AB7B4-4BA4-43D4-B562-D438884DB152\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*\",\"matchCriteriaId\":\"AFD5C688-2103-4D60-979E-D9BE69A989C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*\",\"matchCriteriaId\":\"21421215-F722-4207-A2E5-E2DF4B29859B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*\",\"matchCriteriaId\":\"BFB9EA23-0EF7-4582-A265-3F5AA9EC81B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*\",\"matchCriteriaId\":\"C367B418-659E-4627-B1F1-1B1216C99055\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD5E6D4E-DDDD-4B45-B5E9-F8A916287AF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*\",\"matchCriteriaId\":\"7358492A-491C-491E-AEDF-63CB82619BAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_21:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3DACAAF-AFDC-4391-9E85-344F30937F76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*\",\"matchCriteriaId\":\"D98175BF-B084-4FA5-899D-9E80DC3923EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*\",\"matchCriteriaId\":\"820632CE-F8DF-47EE-B716-7530E60008B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA2BD0A3-7B2D-447B-ABAC-7B867B03B632\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*\",\"matchCriteriaId\":\"D54AB785-E9B7-47BD-B756-0C3A629D67DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9412098-0353-4F7B-9245-010557E6C651\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD30DAEB-4893-41CF-A455-B69C463B9337\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*\",\"matchCriteriaId\":\"21D6CE7E-A036-496C-8E08-A87F62B5290A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8F93BBE-1E8C-4EB3-BCC7-20AB2D813F98\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:*:update41:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.5.0\",\"matchCriteriaId\":\"5200FB75-1398-4CB8-83D1-CEE8F26CF04A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.5.0:update36:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC062AE6-515B-4D40-9B86-46F7A1D7FF1C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.5.0:update38:*:*:*:*:*:*\",\"matchCriteriaId\":\"B4A2D725-A7DC-4802-A377-5C3963AD9941\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.5.0:update40:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3C6E1D8-B96E-40FB-9E66-9B3A5325E78B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"133A7B66-E0B3-4867-A5A4-3C54D6C0C8ED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7FC09E8-7F30-4FE4-912E-588AA250E2A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update10:*:*:*:*:*:*\",\"matchCriteriaId\":\"A586DE4E-8A46-41DE-9FDB-5FDB81DCC87B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update11:*:*:*:*:*:*\",\"matchCriteriaId\":\"9919D091-73D7-465A-80FF-F37D6CAF9F46\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update12:*:*:*:*:*:*\",\"matchCriteriaId\":\"02565D6F-4CB2-4671-A4EF-3169BCFA6154\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update13:*:*:*:*:*:*\",\"matchCriteriaId\":\"452A3E51-9EAC-451D-BA04-A1E7B7D917EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update14:*:*:*:*:*:*\",\"matchCriteriaId\":\"3E8C6AAC-C90B-4220-A69B-2A886A35CF5D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update15:*:*:*:*:*:*\",\"matchCriteriaId\":\"55231B6B-9298-4363-9B5A-14C2DA7B1F50\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update16:*:*:*:*:*:*\",\"matchCriteriaId\":\"E42CF0F7-418C-4BB6-9B73-FA3B9171D092\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update17:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5467E9D-07D8-4BEB-84D5-A3136C133519\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update18:*:*:*:*:*:*\",\"matchCriteriaId\":\"B83B2CE1-45D7-47AD-BC0A-6EC74D5F8F5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update19:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A32F326-EA92-43CD-930E-E527B60CDD3B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"7EA5B9E9-654D-44F7-AE98-3D8B382804AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update20:*:*:*:*:*:*\",\"matchCriteriaId\":\"04344167-530E-4A4D-90EF-74C684943DF1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update21:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0E0373B-201D-408F-9234-A7EFE8B4970D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update22:*:*:*:*:*:*\",\"matchCriteriaId\":\"15EAD76D-D5D0-4984-9D07-C1451D791083\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update23:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE949EBF-2BC0-4355-8B28-B494023D45FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update24:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E0A0A2D-62B9-4A00-84EF-90C15E47A632\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"A070A282-CBD6-4041-B149-5E310BD12E7B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update26:*:*:*:*:*:*\",\"matchCriteriaId\":\"3ECAE71B-C549-4EFB-A509-BFD599F5917A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update27:*:*:*:*:*:*\",\"matchCriteriaId\":\"044BADDD-A80B-4AE2-8595-5F8186314550\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update28:*:*:*:*:*:*\",\"matchCriteriaId\":\"B7FC11BE-8CF7-4D45-BB4A-3EFA1DDBB10D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update29:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D75C40D-62AE-47F2-A6E0-53F3495260BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"44051CFE-D15D-4416-A123-F3E49C67A9E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update31:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C061911-FB19-45EB-8E88-7450224F4023\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update33:*:*:*:*:*:*\",\"matchCriteriaId\":\"0E8009BC-F5A8-4D00-9F5F-8635475C6065\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update4:*:*:*:*:*:*\",\"matchCriteriaId\":\"F296ACF3-1373-429D-B991-8B5BA704A7EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update5:*:*:*:*:*:*\",\"matchCriteriaId\":\"B863420B-DE16-416A-9640-1A1340A9B855\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update6:*:*:*:*:*:*\",\"matchCriteriaId\":\"724C972F-74FE-4044-BBC4-7E0E61FC9002\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update7:*:*:*:*:*:*\",\"matchCriteriaId\":\"46F41C15-0EF4-4115-BFAA-EEAD56FAEEDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update8:*:*:*:*:*:*\",\"matchCriteriaId\":\"EBE909DE-E55A-4BD3-A5BF-ADE407432193\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update9:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DAC04D2-68FD-4793-A8E7-4690A543D7D4\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:*:update41:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.5.0\",\"matchCriteriaId\":\"945B9E26-924E-4A7C-9737-C4DF0BF82673\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.5.0:update36:*:*:*:*:*:*\",\"matchCriteriaId\":\"47E3CD14-7C90-4ECF-BEB8-BCAD9EB5883B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.5.0:update38:*:*:*:*:*:*\",\"matchCriteriaId\":\"56A0449D-E87C-4BAC-AEB3-3C3DBEC1BFDF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.5.0:update40:*:*:*:*:*:*\",\"matchCriteriaId\":\"6559C549-49B6-4784-A30E-605A5632B7C9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A02CF738-1B4F-44D0-A618-3D3E4EF1C9B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE8E883F-E13D-4FB0-8C6F-B7628600E8D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update10:*:*:*:*:*:*\",\"matchCriteriaId\":\"2AADA633-EB11-49A0-8E40-66589034F03E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update11:*:*:*:*:*:*\",\"matchCriteriaId\":\"19DC29C5-1B9F-46DF-ACF6-3FF93E45777D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update11_b03:*:*:*:*:*:*\",\"matchCriteriaId\":\"646DDCA6-AAC4-4FA8-B9B5-51F88D4C001D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update12:*:*:*:*:*:*\",\"matchCriteriaId\":\"B120F7D9-7C1E-4716-B2FA-2990D449F754\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update13:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD61E49F-2A46-4107-BB3F-527079983306\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update14:*:*:*:*:*:*\",\"matchCriteriaId\":\"D900AAE0-6032-4096-AFC2-3D43C55C6C83\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update15:*:*:*:*:*:*\",\"matchCriteriaId\":\"88B0958C-744C-4946-908C-09D2A5FAB120\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update16:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3E7F3CA-FFB3-42B3-A64F-0E38FAF252FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update17:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A2D8D09-3F18-4E73-81CF-BB589BB8AEC1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update18:*:*:*:*:*:*\",\"matchCriteriaId\":\"3FD24779-988F-4EC1-AC19-77186B68229E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update19:*:*:*:*:*:*\",\"matchCriteriaId\":\"4F1E860E-98F2-48FF-B8B3-54D4B58BF81F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"28BE548B-DD0C-4C58-98CA-5B803F04F9EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update20:*:*:*:*:*:*\",\"matchCriteriaId\":\"505A8F40-7758-412F-8895-FA1B00BE6B7D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update21:*:*:*:*:*:*\",\"matchCriteriaId\":\"212F4A5F-87E3-4C62-BA21-46CBBCD8D26A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update22:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C4DFCD2-00A3-4BC7-8842-836CE22C7B39\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update23:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB3A0C49-3FF9-4CB7-9E01-F771D4925103\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update24:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7D1BBD4-2F88-4372-B863-BB70753D841B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A75A4C0-6B49-424B-BEC0-0E0AAEF877B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update26:*:*:*:*:*:*\",\"matchCriteriaId\":\"03555D1A-9470-4227-B843-E6EF91A6BC55\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update27:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8F98346-B755-4082-B873-21A9792C231B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update28:*:*:*:*:*:*\",\"matchCriteriaId\":\"569BD939-9AF4-4AF0-88F0-1055FBAF2D87\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update29:*:*:*:*:*:*\",\"matchCriteriaId\":\"77D6F71D-F584-4920-8143-FEF374CED2C7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F8E9AA0-8907-4B1A-86A1-08568195217D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update31:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FEFE472-63A9-4D02-A674-2EFA4C781D25\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update33:*:*:*:*:*:*\",\"matchCriteriaId\":\"15CBCC05-5D20-4672-9BDD-879F8CB933FB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update4:*:*:*:*:*:*\",\"matchCriteriaId\":\"A337AD31-4566-4A4E-AFF3-7EAECD5C90F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update5:*:*:*:*:*:*\",\"matchCriteriaId\":\"0754AFDC-2F1C-4C06-AB46-457B5E610029\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update6:*:*:*:*:*:*\",\"matchCriteriaId\":\"532CF9DD-0EBB-4B3B-BB9C-A8D78947A790\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update7:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC0ABF7A-107B-4B97-9BD7-7B0CEDAAF359\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update7_b03:*:*:*:*:*:*\",\"matchCriteriaId\":\"59ED507D-AEF8-4631-A298-8BDA6D6E8CB0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update8:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5DA4242-30D9-44C8-9D0D-877348FFA22B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update9:*:*:*:*:*:*\",\"matchCriteriaId\":\"C61C6043-99D0-4F36-AF84-1A5F90B895EE\"}]}]}],\"references\":[{\"url\":\"http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released/\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://blog.fuseyism.com/index.php/2013/04/25/security-icedtea-1-11-11-1-12-5-for-openjdk-6-released/\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jaxp/rev/38d4d23d167c\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00007.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2013-05/msg00017.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2013-06/msg00099.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-April/022796.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=137283787217316\u0026w=2\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-0752.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-0757.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-0758.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-201406-32.xml\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2013:145\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2013:161\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/59141\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.ubuntu.com/usn/USN-1806-1\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.us-cert.gov/ncas/alerts/TA13-107A\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"US Government Resource\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=952646\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16702\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19451\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19705\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0124\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0130\",\"source\":\"secalert_us@oracle.com\"}]}}" } }
rhsa-2013_0751
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-openjdk packages that fix various security issues are\nnow available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "These packages provide the OpenJDK 7 Java Runtime Environment and the\nOpenJDK 7 Software Development Kit.\n\nMultiple flaws were discovered in the font layout engine in the 2D\ncomponent. An untrusted Java application or applet could possibly use these\nflaws to trigger Java Virtual Machine memory corruption. (CVE-2013-1569,\nCVE-2013-2383, CVE-2013-2384)\n\nMultiple improper permission check issues were discovered in the Beans,\nLibraries, JAXP, and RMI components in OpenJDK. An untrusted Java\napplication or applet could use these flaws to bypass Java sandbox\nrestrictions. (CVE-2013-1558, CVE-2013-2422, CVE-2013-2436, CVE-2013-1518,\nCVE-2013-1557)\n\nThe previous default value of the java.rmi.server.useCodebaseOnly property\npermitted the RMI implementation to automatically load classes from\nremotely specified locations. An attacker able to connect to an application\nusing RMI could use this flaw to make the application execute arbitrary\ncode. (CVE-2013-1537)\n\nNote: The fix for CVE-2013-1537 changes the default value of the property\nto true, restricting class loading to the local CLASSPATH and locations\nspecified in the java.rmi.server.codebase property. Refer to Red Hat\nBugzilla bug 952387 for additional details.\n\nThe 2D component did not properly process certain images. An untrusted Java\napplication or applet could possibly use this flaw to trigger Java Virtual\nMachine memory corruption. (CVE-2013-2420)\n\nIt was discovered that the Hotspot component did not properly handle\ncertain intrinsic frames, and did not correctly perform access checks and\nMethodHandle lookups. An untrusted Java application or applet could\nuse these flaws to bypass Java sandbox restrictions. (CVE-2013-2431,\nCVE-2013-2421, CVE-2013-2423)\n\nIt was discovered that JPEGImageReader and JPEGImageWriter in the ImageIO\ncomponent did not protect against modification of their state while\nperforming certain native code operations. An untrusted Java application or\napplet could possibly use these flaws to trigger Java Virtual Machine\nmemory corruption. (CVE-2013-2429, CVE-2013-2430)\n\nThe JDBC driver manager could incorrectly call the toString() method in\nJDBC drivers, and the ConcurrentHashMap class could incorrectly call the\ndefaultReadObject() method. An untrusted Java application or applet could\npossibly use these flaws to bypass Java sandbox restrictions.\n(CVE-2013-1488, CVE-2013-2426)\n\nThe sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly\ninvoke the system class loader. An untrusted Java application or applet\ncould possibly use this flaw to bypass certain Java sandbox restrictions.\n(CVE-2013-0401)\n\nFlaws were discovered in the Network component\u0027s InetAddress serialization,\nand the 2D component\u0027s font handling. An untrusted Java application or\napplet could possibly use these flaws to crash the Java Virtual Machine.\n(CVE-2013-2417, CVE-2013-2419)\n\nThe MBeanInstantiator class implementation in the OpenJDK JMX component did\nnot properly check class access before creating new instances. An untrusted\nJava application or applet could use this flaw to create instances of\nnon-public classes. (CVE-2013-2424)\n\nIt was discovered that JAX-WS could possibly create temporary files with\ninsecure permissions. A local attacker could use this flaw to access\ntemporary files created by an application using JAX-WS. (CVE-2013-2415)\n\nNote: If the web browser plug-in provided by the icedtea-web package was\ninstalled, the issues exposed via Java applets could have been exploited\nwithout user interaction if a user visited a malicious website.\n\nThis erratum also upgrades the OpenJDK package to IcedTea7 2.3.9. Refer to\nthe NEWS file, linked to in the References, for further information.\n\nAll users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:0751", "url": "https://access.redhat.com/errata/RHSA-2013:0751" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.9/NEWS", "url": "http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.9/NEWS" }, { "category": "external", "summary": "920245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920245" }, { "category": "external", "summary": "920247", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920247" }, { "category": "external", "summary": "952387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952387" }, { "category": "external", "summary": "952389", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952389" }, { "category": "external", "summary": "952398", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952398" }, { "category": "external", "summary": "952509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952509" }, { "category": "external", "summary": "952521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952521" }, { "category": "external", "summary": "952524", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952524" }, { "category": "external", "summary": "952550", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952550" }, { "category": "external", "summary": "952638", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952638" }, { "category": "external", "summary": "952640", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952640" }, { "category": "external", "summary": "952642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952642" }, { "category": "external", "summary": "952645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952645" }, { "category": "external", "summary": "952646", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "category": "external", "summary": "952648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952648" }, { "category": "external", "summary": "952649", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952649" }, { "category": "external", "summary": "952653", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952653" }, { "category": "external", "summary": "952656", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952656" }, { "category": "external", "summary": "952657", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952657" }, { "category": "external", "summary": "952708", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952708" }, { "category": "external", "summary": "952709", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952709" }, { "category": "external", "summary": "952711", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952711" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0751.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-openjdk security update", "tracking": { "current_release_date": "2024-11-14T13:00:19+00:00", "generator": { "date": "2024-11-14T13:00:19+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2013:0751", "initial_release_date": "2013-04-17T18:33:00+00:00", "revision_history": [ { "date": "2013-04-17T18:33:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-04-17T18:43:48+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T13:00:19+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "product": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "product_id": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-debuginfo@1.7.0.19-2.3.9.1.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "product": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "product_id": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-demo@1.7.0.19-2.3.9.1.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "product": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "product_id": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-src@1.7.0.19-2.3.9.1.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "product_id": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.19-2.3.9.1.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "product": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "product_id": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-devel@1.7.0.19-2.3.9.1.el6_4?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "product": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "product_id": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-debuginfo@1.7.0.19-2.3.9.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "product": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "product_id": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-demo@1.7.0.19-2.3.9.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "product": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "product_id": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-src@1.7.0.19-2.3.9.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "product_id": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.19-2.3.9.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "product": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "product_id": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-devel@1.7.0.19-2.3.9.1.el6_4?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "product_id": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.19-2.3.9.1.el6_4?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "product": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "product_id": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-javadoc@1.7.0.19-2.3.9.1.el6_4?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2013-0401", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920245" } ], "notes": [ { "category": "description", "text": "The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to execute arbitrary code via vectors related to AWT, as demonstrated by Ben Murphy during a Pwn2Own competition at CanSecWest 2013. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to invocation of the system class loader by the sun.awt.datatransfer.ClassLoaderObjectInputStream class, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0401" }, { "category": "external", "summary": "RHBZ#920245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920245" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0401", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0401" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0401", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0401" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)" }, { "cve": "CVE-2013-1488", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920247" } ], "notes": [ { "category": "description", "text": "The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to execute arbitrary code via unspecified vectors involving reflection, Libraries, \"improper toString calls,\" and the JDBC driver manager, as demonstrated by James Forshaw during a Pwn2Own competition at CanSecWest 2013.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JDBC driver manager improper toString calls (CanSecWest 2013, Libraries, 8009814)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1488" }, { "category": "external", "summary": "RHBZ#920247", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920247" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1488", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1488" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1488", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1488" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: JDBC driver manager improper toString calls (CanSecWest 2013, Libraries, 8009814)" }, { "cve": "CVE-2013-1518", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952646" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JAXP missing security restrictions (JAXP, 6657673)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1518" }, { "category": "external", "summary": "RHBZ#952646", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1518", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1518" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1518", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1518" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: JAXP missing security restrictions (JAXP, 6657673)" }, { "cve": "CVE-2013-1537", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952387" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the default java.rmi.server.useCodebaseOnly setting of false, which allows remote attackers to perform \"dynamic class downloading\" and execute arbitrary code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: remote code loading enabled by default (RMI, 8001040)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1537" }, { "category": "external", "summary": "RHBZ#952387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952387" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1537", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1537" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1537", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1537" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: remote code loading enabled by default (RMI, 8001040)" }, { "cve": "CVE-2013-1557", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952648" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions\" in the LogStream.setDefaultStream method.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1557" }, { "category": "external", "summary": "RHBZ#952648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952648" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1557", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1557" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1557", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1557" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)" }, { "cve": "CVE-2013-1558", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952640" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: java.beans.ThreadGroupContext missing restrictions (Beans, 7200507)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1558" }, { "category": "external", "summary": "RHBZ#952640", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952640" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1558", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1558" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1558", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1558" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: java.beans.ThreadGroupContext missing restrictions (Beans, 7200507)" }, { "cve": "CVE-2013-1569", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952711" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"checking of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1569" }, { "category": "external", "summary": "RHBZ#952711", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952711" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1569", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1569" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1569", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1569" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994)" }, { "cve": "CVE-2013-2383", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952708" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2384, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"handling of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2383" }, { "category": "external", "summary": "RHBZ#952708", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952708" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2383", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2383" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2383", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2383" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986)" }, { "cve": "CVE-2013-2384", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952709" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2383, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font layout\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2384" }, { "category": "external", "summary": "RHBZ#952709", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952709" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2384", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2384" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2384", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2384" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987)" }, { "cve": "CVE-2013-2415", "cwe": { "id": "CWE-732", "name": "Incorrect Permission Assignment for Critical Resource" }, "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952389" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows local users to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"processing of MTOM attachments\" and the creation of temporary files with weak permissions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: temporary files created with insecure permissions (JAX-WS, 8003542)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2415" }, { "category": "external", "summary": "RHBZ#952389", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952389" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2415", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2415" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2415", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2415" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: temporary files created with insecure permissions (JAX-WS, 8003542)" }, { "cve": "CVE-2013-2417", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952657" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to Networking. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an information leak involving InetAddress serialization. CVE has not investigated the apparent discrepancy between vendor reports regarding the impact of this issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2417" }, { "category": "external", "summary": "RHBZ#952657", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952657" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2417", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2417" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2417", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2417" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)" }, { "cve": "CVE-2013-2419", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952656" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font processing errors\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font processing errors (JDK 2D, 8001031)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2419" }, { "category": "external", "summary": "RHBZ#952656", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952656" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2419", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2419" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2419", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2419" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "ICU: Layout Engine font processing errors (JDK 2D, 8001031)" }, { "cve": "CVE-2013-2420", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952638" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient \"validation of images\" in share/native/sun/awt/image/awt_ImageRep.c, possibly involving offsets.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image processing vulnerability (2D, 8007617)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2420" }, { "category": "external", "summary": "RHBZ#952638", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952638" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2420", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2420" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2420", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2420" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image processing vulnerability (2D, 8007617)" }, { "cve": "CVE-2013-2421", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952649" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect MethodHandle lookups, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Hotspot MethodHandle lookup error (Hotspot, 8009699)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2421" }, { "category": "external", "summary": "RHBZ#952649", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952649" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2421", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2421" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2421", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2421" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Hotspot MethodHandle lookup error (Hotspot, 8009699)" }, { "cve": "CVE-2013-2422", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952642" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper method-invocation restrictions by the MethodUtil trampoline class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2422" }, { "category": "external", "summary": "RHBZ#952642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952642" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2422", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2422" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2422", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2422" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)" }, { "cve": "CVE-2013-2423", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952398" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via unknown vectors related to HotSpot. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from the original researcher that this vulnerability allows remote attackers to bypass permission checks by the MethodHandles method and modify arbitrary public final fields using reflection and type confusion, as demonstrated using integer and double fields to disable the security manager.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect setter access checks in MethodHandles (Hostspot, 8009677)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2423" }, { "category": "external", "summary": "RHBZ#952398", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952398" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2423", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2423" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2423", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2423" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-05-25T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: incorrect setter access checks in MethodHandles (Hostspot, 8009677)" }, { "cve": "CVE-2013-2424", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952509" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality via vectors related to JMX. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient class access checks\" when \"creating new instances\" using MBeanInstantiator.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2424" }, { "category": "external", "summary": "RHBZ#952509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952509" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2424", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2424" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2424", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2424" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)" }, { "cve": "CVE-2013-2426", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952653" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect invocation of the defaultReadObject method in the ConcurrentHashMap class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ConcurrentHashMap incorrectly calls defaultReadObject() method (Libraries, 8009063)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2426" }, { "category": "external", "summary": "RHBZ#952653", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952653" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2426", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2426" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2426", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2426" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: ConcurrentHashMap incorrectly calls defaultReadObject() method (Libraries, 8009063)" }, { "cve": "CVE-2013-2429", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952521" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"JPEGImageWriter state corruption\" when using native code, which triggers memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2429" }, { "category": "external", "summary": "RHBZ#952521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952521" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2429", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2429" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2429", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2429" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)" }, { "cve": "CVE-2013-2430", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952524" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; JavaFX 2.2.7 and earlier; and OpenJDK 6 and 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"JPEGImageReader state corruption\" when using native code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2430" }, { "category": "external", "summary": "RHBZ#952524", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952524" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2430", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2430" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2430", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2430" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)" }, { "cve": "CVE-2013-2431", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952645" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to bypassing the Java sandbox using \"method handle intrinsic frames.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Hotspot intrinsic frames vulnerability (Hotspot, 8004336)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2431" }, { "category": "external", "summary": "RHBZ#952645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952645" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2431", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2431" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2431", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2431" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Hotspot intrinsic frames vulnerability (Hotspot, 8004336)" }, { "cve": "CVE-2013-2436", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952550" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-1488 and CVE-2013-2426. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"type checks\" and \"method handle binding\" involving Wrapper.convert.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Wrapper.convert insufficient type checks (Libraries, 8009049)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2436" }, { "category": "external", "summary": "RHBZ#952550", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952550" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2436", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2436" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2436", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2436" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:33:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0751" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Wrapper.convert insufficient type checks (Libraries, 8009049)" } ] }
rhsa-2013_0757
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-oracle packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Oracle Java SE version 7 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2013-0401, CVE-2013-0402, CVE-2013-1488, CVE-2013-1491, CVE-2013-1518,\nCVE-2013-1537, CVE-2013-1540, CVE-2013-1557, CVE-2013-1558, CVE-2013-1561,\nCVE-2013-1563, CVE-2013-1564, CVE-2013-1569, CVE-2013-2383, CVE-2013-2384,\nCVE-2013-2394, CVE-2013-2414, CVE-2013-2415, CVE-2013-2416, CVE-2013-2417,\nCVE-2013-2418, CVE-2013-2419, CVE-2013-2420, CVE-2013-2421, CVE-2013-2422,\nCVE-2013-2423, CVE-2013-2424, CVE-2013-2425, CVE-2013-2426, CVE-2013-2427,\nCVE-2013-2428, CVE-2013-2429, CVE-2013-2430, CVE-2013-2431, CVE-2013-2432,\nCVE-2013-2433, CVE-2013-2434, CVE-2013-2435, CVE-2013-2436, CVE-2013-2438,\nCVE-2013-2439, CVE-2013-2440)\n\nAll users of java-1.7.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 7 Update 21 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:0757", "url": "https://access.redhat.com/errata/RHSA-2013:0757" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" }, { "category": "external", "summary": "920245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920245" }, { "category": "external", "summary": "920246", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920246" }, { "category": "external", "summary": "920247", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920247" }, { "category": "external", "summary": "920248", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920248" }, { "category": "external", "summary": "952387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952387" }, { "category": "external", "summary": "952389", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952389" }, { "category": "external", "summary": "952398", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952398" }, { "category": "external", "summary": "952509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952509" }, { "category": "external", "summary": "952521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952521" }, { "category": "external", "summary": "952524", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952524" }, { "category": "external", "summary": "952550", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952550" }, { "category": "external", "summary": "952638", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952638" }, { "category": "external", "summary": "952640", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952640" }, { "category": "external", "summary": "952642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952642" }, { "category": "external", "summary": "952645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952645" }, { "category": "external", "summary": "952646", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "category": "external", "summary": "952648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952648" }, { "category": "external", "summary": "952649", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952649" }, { "category": "external", "summary": "952653", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952653" }, { "category": "external", "summary": "952656", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952656" }, { "category": "external", "summary": "952657", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952657" }, { "category": "external", "summary": "952708", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952708" }, { "category": "external", "summary": "952709", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952709" }, { "category": "external", "summary": "952711", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952711" }, { "category": "external", "summary": "953135", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953135" }, { "category": "external", "summary": "953166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953166" }, { "category": "external", "summary": "953172", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953172" }, { "category": "external", "summary": "953265", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953265" }, { "category": "external", "summary": "953266", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953266" }, { "category": "external", "summary": "953267", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953267" }, { "category": "external", "summary": "953268", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953268" }, { "category": "external", "summary": "953269", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953269" }, { "category": "external", "summary": "953270", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953270" }, { "category": "external", "summary": "953272", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953272" }, { "category": "external", "summary": "953273", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953273" }, { "category": "external", "summary": "953274", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953274" }, { "category": "external", "summary": "953275", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953275" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0757.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-oracle security update", "tracking": { "current_release_date": "2024-11-22T06:36:39+00:00", "generator": { "date": "2024-11-22T06:36:39+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2013:0757", "initial_release_date": "2013-04-18T18:18:00+00:00", "revision_history": [ { "date": "2013-04-18T18:18:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-11-13T11:10:43+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T06:36:39+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:5::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux Supplementary" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.21-1jpp.1.el5?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.21-1jpp.1.el5?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.21-1jpp.1.el5?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "product_id": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.21-1jpp.1.el5?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.21-1jpp.1.el5?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "product": { "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "product_id": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.21-1jpp.1.el5?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.21-1jpp.1.el5?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.21-1jpp.1.el5?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.21-1jpp.1.el5?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.21-1jpp.1.el5?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.21-1jpp.1.el5?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.21-1jpp.1.el5?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.21-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.21-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.21-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.21-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.21-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.21-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.21-1jpp.1.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.21-1jpp.1.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.21-1jpp.1.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "product_id": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.21-1jpp.1.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.21-1jpp.1.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "product": { "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "product_id": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.21-1jpp.1.el6?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2013-0401", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920245" } ], "notes": [ { "category": "description", "text": "The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to execute arbitrary code via vectors related to AWT, as demonstrated by Ben Murphy during a Pwn2Own competition at CanSecWest 2013. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to invocation of the system class loader by the sun.awt.datatransfer.ClassLoaderObjectInputStream class, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0401" }, { "category": "external", "summary": "RHBZ#920245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920245" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0401", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0401" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0401", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0401" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)" }, { "cve": "CVE-2013-0402", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920246" } ], "notes": [ { "category": "description", "text": "Heap-based buffer overflow in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via unspecified vectors related to JavaFX, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2013.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified JavaFX buffer overflow leading to JVM compromise (CanSecWest 2013, JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0402" }, { "category": "external", "summary": "RHBZ#920246", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920246" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0402", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0402" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0402", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0402" } ], "release_date": "2013-03-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified JavaFX buffer overflow leading to JVM compromise (CanSecWest 2013, JavaFX)" }, { "cve": "CVE-2013-1488", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920247" } ], "notes": [ { "category": "description", "text": "The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to execute arbitrary code via unspecified vectors involving reflection, Libraries, \"improper toString calls,\" and the JDBC driver manager, as demonstrated by James Forshaw during a Pwn2Own competition at CanSecWest 2013.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JDBC driver manager improper toString calls (CanSecWest 2013, Libraries, 8009814)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1488" }, { "category": "external", "summary": "RHBZ#920247", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920247" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1488", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1488" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1488", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1488" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: JDBC driver manager improper toString calls (CanSecWest 2013, Libraries, 8009814)" }, { "cve": "CVE-2013-1491", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920248" } ], "notes": [ { "category": "description", "text": "The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via vectors related to 2D, as demonstrated by Joshua Drake during a Pwn2Own competition at CanSecWest 2013.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified sanbox bypass (CanSecWest 2013, 2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1491" }, { "category": "external", "summary": "RHBZ#920248", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920248" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1491", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1491" } ], "release_date": "2013-03-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified sanbox bypass (CanSecWest 2013, 2D)" }, { "cve": "CVE-2013-1518", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952646" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JAXP missing security restrictions (JAXP, 6657673)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1518" }, { "category": "external", "summary": "RHBZ#952646", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1518", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1518" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1518", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1518" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: JAXP missing security restrictions (JAXP, 6657673)" }, { "cve": "CVE-2013-1537", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952387" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the default java.rmi.server.useCodebaseOnly setting of false, which allows remote attackers to perform \"dynamic class downloading\" and execute arbitrary code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: remote code loading enabled by default (RMI, 8001040)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1537" }, { "category": "external", "summary": "RHBZ#952387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952387" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1537", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1537" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1537", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1537" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: remote code loading enabled by default (RMI, 8001040)" }, { "cve": "CVE-2013-1540", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953166" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2433.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1540" }, { "category": "external", "summary": "RHBZ#953166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953166" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1540", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1540" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1540", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1540" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-1557", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952648" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions\" in the LogStream.setDefaultStream method.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1557" }, { "category": "external", "summary": "RHBZ#952648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952648" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1557", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1557" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1557", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1557" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)" }, { "cve": "CVE-2013-1558", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952640" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: java.beans.ThreadGroupContext missing restrictions (Beans, 7200507)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1558" }, { "category": "external", "summary": "RHBZ#952640", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952640" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1558", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1558" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1558", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1558" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: java.beans.ThreadGroupContext missing restrictions (Beans, 7200507)" }, { "cve": "CVE-2013-1561", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953135" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality via unknown vectors related to JavaFX.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: multiple unspecified JavaFX vulnerabilities fixed in 7u21 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1561" }, { "category": "external", "summary": "RHBZ#953135", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953135" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1561", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1561" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1561", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1561" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: multiple unspecified JavaFX vulnerabilities fixed in 7u21 (JavaFX)" }, { "cve": "CVE-2013-1563", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953172" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Install)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1563" }, { "category": "external", "summary": "RHBZ#953172", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953172" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1563", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1563" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1563", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1563" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Install)" }, { "cve": "CVE-2013-1564", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953135" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to affect integrity via unknown vectors related to JavaFX.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: multiple unspecified JavaFX vulnerabilities fixed in 7u21 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1564" }, { "category": "external", "summary": "RHBZ#953135", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953135" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1564", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1564" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1564", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1564" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: multiple unspecified JavaFX vulnerabilities fixed in 7u21 (JavaFX)" }, { "cve": "CVE-2013-1569", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952711" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"checking of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1569" }, { "category": "external", "summary": "RHBZ#952711", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952711" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1569", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1569" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1569", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1569" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994)" }, { "cve": "CVE-2013-2383", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952708" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2384, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"handling of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2383" }, { "category": "external", "summary": "RHBZ#952708", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952708" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2383", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2383" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2383", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2383" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986)" }, { "cve": "CVE-2013-2384", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952709" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2383, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font layout\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2384" }, { "category": "external", "summary": "RHBZ#952709", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952709" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2384", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2384" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2384", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2384" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987)" }, { "cve": "CVE-2013-2394", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953265" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2432 and CVE-2013-1491.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2394" }, { "category": "external", "summary": "RHBZ#953265", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953265" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2394", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2394" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2394", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2394" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)" }, { "cve": "CVE-2013-2414", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953135" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to JavaFX, a different vulnerability than CVE-2013-0402, CVE-2013-2427, and CVE-2013-2428.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: multiple unspecified JavaFX vulnerabilities fixed in 7u21 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2414" }, { "category": "external", "summary": "RHBZ#953135", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953135" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2414", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2414" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2414", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2414" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: multiple unspecified JavaFX vulnerabilities fixed in 7u21 (JavaFX)" }, { "cve": "CVE-2013-2415", "cwe": { "id": "CWE-732", "name": "Incorrect Permission Assignment for Critical Resource" }, "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952389" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows local users to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"processing of MTOM attachments\" and the creation of temporary files with weak permissions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: temporary files created with insecure permissions (JAX-WS, 8003542)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2415" }, { "category": "external", "summary": "RHBZ#952389", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952389" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2415", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2415" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2415", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2415" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: temporary files created with insecure permissions (JAX-WS, 8003542)" }, { "cve": "CVE-2013-2416", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953266" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2416" }, { "category": "external", "summary": "RHBZ#953266", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953266" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2416", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2416" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2416", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2416" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 (Deployment)" }, { "cve": "CVE-2013-2417", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952657" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to Networking. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an information leak involving InetAddress serialization. CVE has not investigated the apparent discrepancy between vendor reports regarding the impact of this issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2417" }, { "category": "external", "summary": "RHBZ#952657", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952657" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2417", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2417" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2417", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2417" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)" }, { "cve": "CVE-2013-2418", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953267" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2418" }, { "category": "external", "summary": "RHBZ#953267", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953267" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2418", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2418" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2418", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2418" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-2419", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952656" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font processing errors\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font processing errors (JDK 2D, 8001031)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2419" }, { "category": "external", "summary": "RHBZ#952656", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952656" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2419", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2419" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2419", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2419" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "ICU: Layout Engine font processing errors (JDK 2D, 8001031)" }, { "cve": "CVE-2013-2420", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952638" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient \"validation of images\" in share/native/sun/awt/image/awt_ImageRep.c, possibly involving offsets.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image processing vulnerability (2D, 8007617)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2420" }, { "category": "external", "summary": "RHBZ#952638", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952638" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2420", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2420" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2420", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2420" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image processing vulnerability (2D, 8007617)" }, { "cve": "CVE-2013-2421", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952649" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect MethodHandle lookups, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Hotspot MethodHandle lookup error (Hotspot, 8009699)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2421" }, { "category": "external", "summary": "RHBZ#952649", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952649" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2421", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2421" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2421", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2421" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Hotspot MethodHandle lookup error (Hotspot, 8009699)" }, { "cve": "CVE-2013-2422", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952642" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper method-invocation restrictions by the MethodUtil trampoline class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2422" }, { "category": "external", "summary": "RHBZ#952642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952642" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2422", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2422" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2422", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2422" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)" }, { "cve": "CVE-2013-2423", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952398" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via unknown vectors related to HotSpot. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from the original researcher that this vulnerability allows remote attackers to bypass permission checks by the MethodHandles method and modify arbitrary public final fields using reflection and type confusion, as demonstrated using integer and double fields to disable the security manager.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect setter access checks in MethodHandles (Hostspot, 8009677)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2423" }, { "category": "external", "summary": "RHBZ#952398", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952398" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2423", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2423" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2423", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2423" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-05-25T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: incorrect setter access checks in MethodHandles (Hostspot, 8009677)" }, { "cve": "CVE-2013-2424", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952509" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality via vectors related to JMX. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient class access checks\" when \"creating new instances\" using MBeanInstantiator.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2424" }, { "category": "external", "summary": "RHBZ#952509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952509" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2424", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2424" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2424", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2424" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)" }, { "cve": "CVE-2013-2425", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953268" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 (Install)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2425" }, { "category": "external", "summary": "RHBZ#953268", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953268" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2425", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2425" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2425", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2425" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 (Install)" }, { "cve": "CVE-2013-2426", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952653" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect invocation of the defaultReadObject method in the ConcurrentHashMap class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ConcurrentHashMap incorrectly calls defaultReadObject() method (Libraries, 8009063)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2426" }, { "category": "external", "summary": "RHBZ#952653", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952653" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2426", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2426" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2426", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2426" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: ConcurrentHashMap incorrectly calls defaultReadObject() method (Libraries, 8009063)" }, { "cve": "CVE-2013-2427", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953135" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to JavaFX, a different vulnerability than CVE-2013-0402, CVE-2013-2414, and CVE-2013-2428.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: multiple unspecified JavaFX vulnerabilities fixed in 7u21 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2427" }, { "category": "external", "summary": "RHBZ#953135", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953135" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2427", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2427" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2427", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2427" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: multiple unspecified JavaFX vulnerabilities fixed in 7u21 (JavaFX)" }, { "cve": "CVE-2013-2428", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953135" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to JavaFX, a different vulnerability than CVE-2013-0402, CVE-2013-2414, and CVE-2013-2427.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: multiple unspecified JavaFX vulnerabilities fixed in 7u21 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2428" }, { "category": "external", "summary": "RHBZ#953135", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953135" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2428", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2428" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2428", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2428" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: multiple unspecified JavaFX vulnerabilities fixed in 7u21 (JavaFX)" }, { "cve": "CVE-2013-2429", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952521" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"JPEGImageWriter state corruption\" when using native code, which triggers memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2429" }, { "category": "external", "summary": "RHBZ#952521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952521" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2429", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2429" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2429", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2429" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)" }, { "cve": "CVE-2013-2430", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952524" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; JavaFX 2.2.7 and earlier; and OpenJDK 6 and 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"JPEGImageReader state corruption\" when using native code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2430" }, { "category": "external", "summary": "RHBZ#952524", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952524" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2430", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2430" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2430", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2430" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)" }, { "cve": "CVE-2013-2431", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952645" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to bypassing the Java sandbox using \"method handle intrinsic frames.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Hotspot intrinsic frames vulnerability (Hotspot, 8004336)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2431" }, { "category": "external", "summary": "RHBZ#952645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952645" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2431", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2431" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2431", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2431" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Hotspot intrinsic frames vulnerability (Hotspot, 8004336)" }, { "cve": "CVE-2013-2432", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953269" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2394 and CVE-2013-1491.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2432" }, { "category": "external", "summary": "RHBZ#953269", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953269" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2432", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2432" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2432", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2432" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)" }, { "cve": "CVE-2013-2433", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953270" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-1540.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2433" }, { "category": "external", "summary": "RHBZ#953270", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953270" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2433", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2433" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2433", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2433" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-2434", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953272" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2434" }, { "category": "external", "summary": "RHBZ#953272", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953272" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2434", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2434" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2434", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2434" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 (2D)" }, { "cve": "CVE-2013-2435", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953273" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2440.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2435" }, { "category": "external", "summary": "RHBZ#953273", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953273" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2435", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2435" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2435", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2435" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-2436", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952550" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-1488 and CVE-2013-2426. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"type checks\" and \"method handle binding\" involving Wrapper.convert.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Wrapper.convert insufficient type checks (Libraries, 8009049)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2436" }, { "category": "external", "summary": "RHBZ#952550", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952550" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2436", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2436" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2436", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2436" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Wrapper.convert insufficient type checks (Libraries, 8009049)" }, { "cve": "CVE-2013-2438", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953135" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier allows remote attackers to affect integrity via unknown vectors related to JavaFX.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: multiple unspecified JavaFX vulnerabilities fixed in 7u21 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2438" }, { "category": "external", "summary": "RHBZ#953135", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953135" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2438", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2438" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2438", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2438" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: multiple unspecified JavaFX vulnerabilities fixed in 7u21 (JavaFX)" }, { "cve": "CVE-2013-2439", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953274" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Install.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Install)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2439" }, { "category": "external", "summary": "RHBZ#953274", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953274" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2439", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2439" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2439", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2439" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Install)" }, { "cve": "CVE-2013-2440", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953275" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2435.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2440" }, { "category": "external", "summary": "RHBZ#953275", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953275" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2440", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2440" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2440", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2440" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:18:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0757" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el5.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el5.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.21-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.21-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" } ] }
rhsa-2013_0752
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-openjdk packages that fix various security issues are\nnow available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "These packages provide the OpenJDK 7 Java Runtime Environment and the\nOpenJDK 7 Software Development Kit.\n\nMultiple flaws were discovered in the font layout engine in the 2D\ncomponent. An untrusted Java application or applet could possibly use these\nflaws to trigger Java Virtual Machine memory corruption. (CVE-2013-1569,\nCVE-2013-2383, CVE-2013-2384)\n\nMultiple improper permission check issues were discovered in the Beans,\nLibraries, JAXP, and RMI components in OpenJDK. An untrusted Java\napplication or applet could use these flaws to bypass Java sandbox\nrestrictions. (CVE-2013-1558, CVE-2013-2422, CVE-2013-2436, CVE-2013-1518,\nCVE-2013-1557)\n\nThe previous default value of the java.rmi.server.useCodebaseOnly property\npermitted the RMI implementation to automatically load classes from\nremotely specified locations. An attacker able to connect to an application\nusing RMI could use this flaw to make the application execute arbitrary\ncode. (CVE-2013-1537)\n\nNote: The fix for CVE-2013-1537 changes the default value of the property\nto true, restricting class loading to the local CLASSPATH and locations\nspecified in the java.rmi.server.codebase property. Refer to Red Hat\nBugzilla bug 952387 for additional details.\n\nThe 2D component did not properly process certain images. An untrusted Java\napplication or applet could possibly use this flaw to trigger Java Virtual\nMachine memory corruption. (CVE-2013-2420)\n\nIt was discovered that the Hotspot component did not properly handle\ncertain intrinsic frames, and did not correctly perform access checks and\nMethodHandle lookups. An untrusted Java application or applet could\nuse these flaws to bypass Java sandbox restrictions. (CVE-2013-2431,\nCVE-2013-2421, CVE-2013-2423)\n\nIt was discovered that JPEGImageReader and JPEGImageWriter in the ImageIO\ncomponent did not protect against modification of their state while\nperforming certain native code operations. An untrusted Java application or\napplet could possibly use these flaws to trigger Java Virtual Machine\nmemory corruption. (CVE-2013-2429, CVE-2013-2430)\n\nThe JDBC driver manager could incorrectly call the toString() method in\nJDBC drivers, and the ConcurrentHashMap class could incorrectly call the\ndefaultReadObject() method. An untrusted Java application or applet could\npossibly use these flaws to bypass Java sandbox restrictions.\n(CVE-2013-1488, CVE-2013-2426)\n\nThe sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly\ninvoke the system class loader. An untrusted Java application or applet\ncould possibly use this flaw to bypass certain Java sandbox restrictions.\n(CVE-2013-0401)\n\nFlaws were discovered in the Network component\u0027s InetAddress serialization,\nand the 2D component\u0027s font handling. An untrusted Java application or\napplet could possibly use these flaws to crash the Java Virtual Machine.\n(CVE-2013-2417, CVE-2013-2419)\n\nThe MBeanInstantiator class implementation in the OpenJDK JMX component did\nnot properly check class access before creating new instances. An untrusted\nJava application or applet could use this flaw to create instances of\nnon-public classes. (CVE-2013-2424)\n\nIt was discovered that JAX-WS could possibly create temporary files with\ninsecure permissions. A local attacker could use this flaw to access\ntemporary files created by an application using JAX-WS. (CVE-2013-2415)\n\nThis erratum also upgrades the OpenJDK package to IcedTea7 2.3.9. Refer to\nthe NEWS file, linked to in the References, for further information.\n\nAll users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:0752", "url": "https://access.redhat.com/errata/RHSA-2013:0752" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.9/NEWS", "url": "http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.9/NEWS" }, { "category": "external", "summary": "920245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920245" }, { "category": "external", "summary": "920247", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920247" }, { "category": "external", "summary": "952387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952387" }, { "category": "external", "summary": "952389", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952389" }, { "category": "external", "summary": "952398", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952398" }, { "category": "external", "summary": "952509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952509" }, { "category": "external", "summary": "952521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952521" }, { "category": "external", "summary": "952524", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952524" }, { "category": "external", "summary": "952550", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952550" }, { "category": "external", "summary": "952638", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952638" }, { "category": "external", "summary": "952640", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952640" }, { "category": "external", "summary": "952642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952642" }, { "category": "external", "summary": "952645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952645" }, { "category": "external", "summary": "952646", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "category": "external", "summary": "952648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952648" }, { "category": "external", "summary": "952649", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952649" }, { "category": "external", "summary": "952653", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952653" }, { "category": "external", "summary": "952656", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952656" }, { "category": "external", "summary": "952657", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952657" }, { "category": "external", "summary": "952708", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952708" }, { "category": "external", "summary": "952709", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952709" }, { "category": "external", "summary": "952711", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952711" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0752.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-openjdk security update", "tracking": { "current_release_date": "2024-11-14T13:00:27+00:00", "generator": { "date": "2024-11-14T13:00:27+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2013:0752", "initial_release_date": "2013-04-17T18:37:00+00:00", "revision_history": [ { "date": "2013-04-17T18:37:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-04-17T18:43:40+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T13:00:27+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "product_id": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-debuginfo@1.7.0.19-2.3.9.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "product_id": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-javadoc@1.7.0.19-2.3.9.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "product_id": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.19-2.3.9.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "product_id": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-demo@1.7.0.19-2.3.9.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "product_id": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-devel@1.7.0.19-2.3.9.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "product_id": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-src@1.7.0.19-2.3.9.1.el5_9?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-debuginfo@1.7.0.19-2.3.9.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-javadoc@1.7.0.19-2.3.9.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.19-2.3.9.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-demo@1.7.0.19-2.3.9.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-devel@1.7.0.19-2.3.9.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-src@1.7.0.19-2.3.9.1.el5_9?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "product_id": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.19-2.3.9.1.el5_9?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" } ] }, "vulnerabilities": [ { "cve": "CVE-2013-0401", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920245" } ], "notes": [ { "category": "description", "text": "The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to execute arbitrary code via vectors related to AWT, as demonstrated by Ben Murphy during a Pwn2Own competition at CanSecWest 2013. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to invocation of the system class loader by the sun.awt.datatransfer.ClassLoaderObjectInputStream class, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0401" }, { "category": "external", "summary": "RHBZ#920245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920245" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0401", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0401" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0401", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0401" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)" }, { "cve": "CVE-2013-1488", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920247" } ], "notes": [ { "category": "description", "text": "The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to execute arbitrary code via unspecified vectors involving reflection, Libraries, \"improper toString calls,\" and the JDBC driver manager, as demonstrated by James Forshaw during a Pwn2Own competition at CanSecWest 2013.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JDBC driver manager improper toString calls (CanSecWest 2013, Libraries, 8009814)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1488" }, { "category": "external", "summary": "RHBZ#920247", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920247" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1488", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1488" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1488", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1488" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: JDBC driver manager improper toString calls (CanSecWest 2013, Libraries, 8009814)" }, { "cve": "CVE-2013-1518", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952646" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JAXP missing security restrictions (JAXP, 6657673)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1518" }, { "category": "external", "summary": "RHBZ#952646", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1518", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1518" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1518", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1518" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: JAXP missing security restrictions (JAXP, 6657673)" }, { "cve": "CVE-2013-1537", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952387" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the default java.rmi.server.useCodebaseOnly setting of false, which allows remote attackers to perform \"dynamic class downloading\" and execute arbitrary code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: remote code loading enabled by default (RMI, 8001040)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1537" }, { "category": "external", "summary": "RHBZ#952387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952387" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1537", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1537" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1537", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1537" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: remote code loading enabled by default (RMI, 8001040)" }, { "cve": "CVE-2013-1557", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952648" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions\" in the LogStream.setDefaultStream method.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1557" }, { "category": "external", "summary": "RHBZ#952648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952648" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1557", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1557" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1557", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1557" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)" }, { "cve": "CVE-2013-1558", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952640" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: java.beans.ThreadGroupContext missing restrictions (Beans, 7200507)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1558" }, { "category": "external", "summary": "RHBZ#952640", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952640" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1558", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1558" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1558", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1558" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: java.beans.ThreadGroupContext missing restrictions (Beans, 7200507)" }, { "cve": "CVE-2013-1569", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952711" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"checking of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1569" }, { "category": "external", "summary": "RHBZ#952711", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952711" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1569", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1569" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1569", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1569" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994)" }, { "cve": "CVE-2013-2383", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952708" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2384, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"handling of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2383" }, { "category": "external", "summary": "RHBZ#952708", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952708" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2383", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2383" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2383", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2383" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986)" }, { "cve": "CVE-2013-2384", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952709" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2383, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font layout\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2384" }, { "category": "external", "summary": "RHBZ#952709", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952709" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2384", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2384" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2384", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2384" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987)" }, { "cve": "CVE-2013-2415", "cwe": { "id": "CWE-732", "name": "Incorrect Permission Assignment for Critical Resource" }, "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952389" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows local users to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"processing of MTOM attachments\" and the creation of temporary files with weak permissions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: temporary files created with insecure permissions (JAX-WS, 8003542)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2415" }, { "category": "external", "summary": "RHBZ#952389", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952389" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2415", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2415" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2415", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2415" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: temporary files created with insecure permissions (JAX-WS, 8003542)" }, { "cve": "CVE-2013-2417", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952657" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to Networking. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an information leak involving InetAddress serialization. CVE has not investigated the apparent discrepancy between vendor reports regarding the impact of this issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2417" }, { "category": "external", "summary": "RHBZ#952657", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952657" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2417", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2417" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2417", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2417" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)" }, { "cve": "CVE-2013-2419", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952656" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font processing errors\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font processing errors (JDK 2D, 8001031)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2419" }, { "category": "external", "summary": "RHBZ#952656", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952656" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2419", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2419" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2419", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2419" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "ICU: Layout Engine font processing errors (JDK 2D, 8001031)" }, { "cve": "CVE-2013-2420", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952638" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient \"validation of images\" in share/native/sun/awt/image/awt_ImageRep.c, possibly involving offsets.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image processing vulnerability (2D, 8007617)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2420" }, { "category": "external", "summary": "RHBZ#952638", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952638" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2420", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2420" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2420", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2420" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image processing vulnerability (2D, 8007617)" }, { "cve": "CVE-2013-2421", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952649" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect MethodHandle lookups, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Hotspot MethodHandle lookup error (Hotspot, 8009699)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2421" }, { "category": "external", "summary": "RHBZ#952649", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952649" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2421", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2421" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2421", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2421" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Hotspot MethodHandle lookup error (Hotspot, 8009699)" }, { "cve": "CVE-2013-2422", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952642" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper method-invocation restrictions by the MethodUtil trampoline class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2422" }, { "category": "external", "summary": "RHBZ#952642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952642" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2422", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2422" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2422", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2422" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)" }, { "cve": "CVE-2013-2423", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952398" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via unknown vectors related to HotSpot. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from the original researcher that this vulnerability allows remote attackers to bypass permission checks by the MethodHandles method and modify arbitrary public final fields using reflection and type confusion, as demonstrated using integer and double fields to disable the security manager.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect setter access checks in MethodHandles (Hostspot, 8009677)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2423" }, { "category": "external", "summary": "RHBZ#952398", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952398" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2423", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2423" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2423", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2423" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-05-25T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: incorrect setter access checks in MethodHandles (Hostspot, 8009677)" }, { "cve": "CVE-2013-2424", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952509" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality via vectors related to JMX. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient class access checks\" when \"creating new instances\" using MBeanInstantiator.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2424" }, { "category": "external", "summary": "RHBZ#952509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952509" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2424", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2424" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2424", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2424" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)" }, { "cve": "CVE-2013-2426", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952653" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect invocation of the defaultReadObject method in the ConcurrentHashMap class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ConcurrentHashMap incorrectly calls defaultReadObject() method (Libraries, 8009063)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2426" }, { "category": "external", "summary": "RHBZ#952653", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952653" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2426", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2426" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2426", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2426" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: ConcurrentHashMap incorrectly calls defaultReadObject() method (Libraries, 8009063)" }, { "cve": "CVE-2013-2429", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952521" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"JPEGImageWriter state corruption\" when using native code, which triggers memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2429" }, { "category": "external", "summary": "RHBZ#952521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952521" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2429", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2429" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2429", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2429" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)" }, { "cve": "CVE-2013-2430", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952524" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; JavaFX 2.2.7 and earlier; and OpenJDK 6 and 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"JPEGImageReader state corruption\" when using native code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2430" }, { "category": "external", "summary": "RHBZ#952524", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952524" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2430", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2430" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2430", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2430" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)" }, { "cve": "CVE-2013-2431", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952645" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to bypassing the Java sandbox using \"method handle intrinsic frames.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Hotspot intrinsic frames vulnerability (Hotspot, 8004336)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2431" }, { "category": "external", "summary": "RHBZ#952645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952645" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2431", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2431" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2431", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2431" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Hotspot intrinsic frames vulnerability (Hotspot, 8004336)" }, { "cve": "CVE-2013-2436", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952550" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-1488 and CVE-2013-2426. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"type checks\" and \"method handle binding\" involving Wrapper.convert.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Wrapper.convert insufficient type checks (Libraries, 8009049)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2436" }, { "category": "external", "summary": "RHBZ#952550", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952550" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2436", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2436" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2436", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2436" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-17T18:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0752" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.19-2.3.9.1.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.19-2.3.9.1.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Wrapper.convert insufficient type checks (Libraries, 8009049)" } ] }
rhsa-2013_0770
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.6.0-openjdk packages that fix various security issues are\nnow available for Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "These packages provide the OpenJDK 6 Java Runtime Environment and the\nOpenJDK 6 Software Development Kit.\n\nMultiple flaws were discovered in the font layout engine in the 2D\ncomponent. An untrusted Java application or applet could possibly use these\nflaws to trigger Java Virtual Machine memory corruption. (CVE-2013-1569,\nCVE-2013-2383, CVE-2013-2384)\n\nMultiple improper permission check issues were discovered in the Beans,\nLibraries, JAXP, and RMI components in OpenJDK. An untrusted Java\napplication or applet could use these flaws to bypass Java sandbox\nrestrictions. (CVE-2013-1558, CVE-2013-2422, CVE-2013-1518, CVE-2013-1557)\n\nThe previous default value of the java.rmi.server.useCodebaseOnly property\npermitted the RMI implementation to automatically load classes from\nremotely specified locations. An attacker able to connect to an application\nusing RMI could use this flaw to make the application execute arbitrary\ncode. (CVE-2013-1537)\n\nNote: The fix for CVE-2013-1537 changes the default value of the property\nto true, restricting class loading to the local CLASSPATH and locations\nspecified in the java.rmi.server.codebase property. Refer to Red Hat\nBugzilla bug 952387 for additional details.\n\nThe 2D component did not properly process certain images. An untrusted Java\napplication or applet could possibly use this flaw to trigger Java Virtual\nMachine memory corruption. (CVE-2013-2420)\n\nIt was discovered that the Hotspot component did not properly handle\ncertain intrinsic frames, and did not correctly perform MethodHandle\nlookups. An untrusted Java application or applet could use these flaws to\nbypass Java sandbox restrictions. (CVE-2013-2431, CVE-2013-2421)\n\nIt was discovered that JPEGImageReader and JPEGImageWriter in the ImageIO\ncomponent did not protect against modification of their state while\nperforming certain native code operations. An untrusted Java application or\napplet could possibly use these flaws to trigger Java Virtual Machine\nmemory corruption. (CVE-2013-2429, CVE-2013-2430)\n\nThe JDBC driver manager could incorrectly call the toString() method in\nJDBC drivers, and the ConcurrentHashMap class could incorrectly call the\ndefaultReadObject() method. An untrusted Java application or applet could\npossibly use these flaws to bypass Java sandbox restrictions.\n(CVE-2013-1488, CVE-2013-2426)\n\nThe sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly\ninvoke the system class loader. An untrusted Java application or applet\ncould possibly use this flaw to bypass certain Java sandbox restrictions.\n(CVE-2013-0401)\n\nFlaws were discovered in the Network component\u0027s InetAddress serialization,\nand the 2D component\u0027s font handling. An untrusted Java application or\napplet could possibly use these flaws to crash the Java Virtual Machine.\n(CVE-2013-2417, CVE-2013-2419)\n\nThe MBeanInstantiator class implementation in the OpenJDK JMX component did\nnot properly check class access before creating new instances. An untrusted\nJava application or applet could use this flaw to create instances of\nnon-public classes. (CVE-2013-2424)\n\nIt was discovered that JAX-WS could possibly create temporary files with\ninsecure permissions. A local attacker could use this flaw to access\ntemporary files created by an application using JAX-WS. (CVE-2013-2415)\n\nThis erratum also upgrades the OpenJDK package to IcedTea6 1.11.10. Refer\nto the NEWS file, linked to in the References, for further information.\n\nAll users of java-1.6.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:0770", "url": "https://access.redhat.com/errata/RHSA-2013:0770" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.10/NEWS", "url": "http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.10/NEWS" }, { "category": "external", "summary": "920245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920245" }, { "category": "external", "summary": "920247", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920247" }, { "category": "external", "summary": "952387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952387" }, { "category": "external", "summary": "952389", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952389" }, { "category": "external", "summary": "952509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952509" }, { "category": "external", "summary": "952521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952521" }, { "category": "external", "summary": "952524", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952524" }, { "category": "external", "summary": "952638", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952638" }, { "category": "external", "summary": "952640", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952640" }, { "category": "external", "summary": "952642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952642" }, { "category": "external", "summary": "952645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952645" }, { "category": "external", "summary": "952646", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "category": "external", "summary": "952648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952648" }, { "category": "external", "summary": "952649", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952649" }, { "category": "external", "summary": "952653", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952653" }, { "category": "external", "summary": "952656", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952656" }, { "category": "external", "summary": "952657", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952657" }, { "category": "external", "summary": "952708", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952708" }, { "category": "external", "summary": "952709", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952709" }, { "category": "external", "summary": "952711", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952711" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0770.json" } ], "title": "Red Hat Security Advisory: java-1.6.0-openjdk security update", "tracking": { "current_release_date": "2024-11-14T13:00:44+00:00", "generator": { "date": "2024-11-14T13:00:44+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2013:0770", "initial_release_date": "2013-04-24T17:54:00+00:00", "revision_history": [ { "date": "2013-04-24T17:54:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-04-24T17:57:30+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T13:00:44+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.40.1.11.11.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-javadoc@1.6.0.0-1.40.1.11.11.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-demo@1.6.0.0-1.40.1.11.11.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-src@1.6.0.0-1.40.1.11.11.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-devel@1.6.0.0-1.40.1.11.11.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-debuginfo@1.6.0.0-1.40.1.11.11.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product_id": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-debuginfo@1.6.0.0-1.61.1.11.11.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.61.1.11.11.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product_id": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-javadoc@1.6.0.0-1.61.1.11.11.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product_id": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-devel@1.6.0.0-1.61.1.11.11.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product_id": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-demo@1.6.0.0-1.61.1.11.11.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product_id": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-src@1.6.0.0-1.61.1.11.11.el6_4?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.40.1.11.11.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product_id": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-javadoc@1.6.0.0-1.40.1.11.11.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product_id": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-demo@1.6.0.0-1.40.1.11.11.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product_id": "java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-src@1.6.0.0-1.40.1.11.11.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product_id": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-devel@1.6.0.0-1.40.1.11.11.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product_id": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-debuginfo@1.6.0.0-1.40.1.11.11.el5_9?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.40.1.11.11.el5_9?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.61.1.11.11.el6_4?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product_id": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-javadoc@1.6.0.0-1.61.1.11.11.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product_id": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-debuginfo@1.6.0.0-1.61.1.11.11.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.61.1.11.11.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product_id": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-devel@1.6.0.0-1.61.1.11.11.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product_id": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-demo@1.6.0.0-1.61.1.11.11.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product_id": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-src@1.6.0.0-1.61.1.11.11.el6_4?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2013-0401", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920245" } ], "notes": [ { "category": "description", "text": "The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to execute arbitrary code via vectors related to AWT, as demonstrated by Ben Murphy during a Pwn2Own competition at CanSecWest 2013. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to invocation of the system class loader by the sun.awt.datatransfer.ClassLoaderObjectInputStream class, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0401" }, { "category": "external", "summary": "RHBZ#920245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920245" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0401", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0401" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0401", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0401" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)" }, { "cve": "CVE-2013-1488", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920247" } ], "notes": [ { "category": "description", "text": "The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to execute arbitrary code via unspecified vectors involving reflection, Libraries, \"improper toString calls,\" and the JDBC driver manager, as demonstrated by James Forshaw during a Pwn2Own competition at CanSecWest 2013.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JDBC driver manager improper toString calls (CanSecWest 2013, Libraries, 8009814)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1488" }, { "category": "external", "summary": "RHBZ#920247", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920247" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1488", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1488" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1488", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1488" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: JDBC driver manager improper toString calls (CanSecWest 2013, Libraries, 8009814)" }, { "cve": "CVE-2013-1518", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952646" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JAXP missing security restrictions (JAXP, 6657673)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1518" }, { "category": "external", "summary": "RHBZ#952646", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1518", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1518" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1518", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1518" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: JAXP missing security restrictions (JAXP, 6657673)" }, { "cve": "CVE-2013-1537", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952387" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the default java.rmi.server.useCodebaseOnly setting of false, which allows remote attackers to perform \"dynamic class downloading\" and execute arbitrary code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: remote code loading enabled by default (RMI, 8001040)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1537" }, { "category": "external", "summary": "RHBZ#952387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952387" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1537", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1537" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1537", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1537" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: remote code loading enabled by default (RMI, 8001040)" }, { "cve": "CVE-2013-1557", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952648" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions\" in the LogStream.setDefaultStream method.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1557" }, { "category": "external", "summary": "RHBZ#952648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952648" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1557", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1557" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1557", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1557" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)" }, { "cve": "CVE-2013-1558", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952640" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: java.beans.ThreadGroupContext missing restrictions (Beans, 7200507)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1558" }, { "category": "external", "summary": "RHBZ#952640", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952640" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1558", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1558" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1558", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1558" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: java.beans.ThreadGroupContext missing restrictions (Beans, 7200507)" }, { "cve": "CVE-2013-1569", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952711" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"checking of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1569" }, { "category": "external", "summary": "RHBZ#952711", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952711" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1569", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1569" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1569", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1569" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994)" }, { "cve": "CVE-2013-2383", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952708" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2384, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"handling of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2383" }, { "category": "external", "summary": "RHBZ#952708", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952708" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2383", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2383" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2383", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2383" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986)" }, { "cve": "CVE-2013-2384", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952709" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2383, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font layout\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2384" }, { "category": "external", "summary": "RHBZ#952709", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952709" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2384", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2384" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2384", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2384" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987)" }, { "cve": "CVE-2013-2415", "cwe": { "id": "CWE-732", "name": "Incorrect Permission Assignment for Critical Resource" }, "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952389" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows local users to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"processing of MTOM attachments\" and the creation of temporary files with weak permissions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: temporary files created with insecure permissions (JAX-WS, 8003542)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2415" }, { "category": "external", "summary": "RHBZ#952389", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952389" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2415", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2415" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2415", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2415" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: temporary files created with insecure permissions (JAX-WS, 8003542)" }, { "cve": "CVE-2013-2417", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952657" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to Networking. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an information leak involving InetAddress serialization. CVE has not investigated the apparent discrepancy between vendor reports regarding the impact of this issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2417" }, { "category": "external", "summary": "RHBZ#952657", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952657" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2417", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2417" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2417", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2417" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)" }, { "cve": "CVE-2013-2419", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952656" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font processing errors\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font processing errors (JDK 2D, 8001031)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2419" }, { "category": "external", "summary": "RHBZ#952656", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952656" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2419", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2419" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2419", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2419" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "ICU: Layout Engine font processing errors (JDK 2D, 8001031)" }, { "cve": "CVE-2013-2420", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952638" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient \"validation of images\" in share/native/sun/awt/image/awt_ImageRep.c, possibly involving offsets.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image processing vulnerability (2D, 8007617)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2420" }, { "category": "external", "summary": "RHBZ#952638", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952638" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2420", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2420" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2420", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2420" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image processing vulnerability (2D, 8007617)" }, { "cve": "CVE-2013-2421", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952649" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect MethodHandle lookups, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Hotspot MethodHandle lookup error (Hotspot, 8009699)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2421" }, { "category": "external", "summary": "RHBZ#952649", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952649" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2421", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2421" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2421", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2421" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Hotspot MethodHandle lookup error (Hotspot, 8009699)" }, { "cve": "CVE-2013-2422", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952642" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper method-invocation restrictions by the MethodUtil trampoline class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2422" }, { "category": "external", "summary": "RHBZ#952642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952642" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2422", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2422" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2422", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2422" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)" }, { "cve": "CVE-2013-2424", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952509" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality via vectors related to JMX. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient class access checks\" when \"creating new instances\" using MBeanInstantiator.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2424" }, { "category": "external", "summary": "RHBZ#952509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952509" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2424", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2424" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2424", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2424" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)" }, { "cve": "CVE-2013-2426", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952653" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect invocation of the defaultReadObject method in the ConcurrentHashMap class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ConcurrentHashMap incorrectly calls defaultReadObject() method (Libraries, 8009063)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2426" }, { "category": "external", "summary": "RHBZ#952653", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952653" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2426", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2426" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2426", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2426" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: ConcurrentHashMap incorrectly calls defaultReadObject() method (Libraries, 8009063)" }, { "cve": "CVE-2013-2429", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952521" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"JPEGImageWriter state corruption\" when using native code, which triggers memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2429" }, { "category": "external", "summary": "RHBZ#952521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952521" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2429", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2429" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2429", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2429" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)" }, { "cve": "CVE-2013-2430", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952524" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; JavaFX 2.2.7 and earlier; and OpenJDK 6 and 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"JPEGImageReader state corruption\" when using native code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2430" }, { "category": "external", "summary": "RHBZ#952524", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952524" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2430", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2430" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2430", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2430" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)" }, { "cve": "CVE-2013-2431", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952645" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to HotSpot. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to bypassing the Java sandbox using \"method handle intrinsic frames.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Hotspot intrinsic frames vulnerability (Hotspot, 8004336)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2431" }, { "category": "external", "summary": "RHBZ#952645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952645" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2431", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2431" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2431", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2431" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-24T17:54:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0770" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.40.1.11.11.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.61.1.11.11.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Hotspot intrinsic frames vulnerability (Hotspot, 8004336)" } ] }
rhsa-2013_0758
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.6.0-sun packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Oracle Java SE version 6 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2013-0401, CVE-2013-1491, CVE-2013-1518, CVE-2013-1537, CVE-2013-1540,\nCVE-2013-1557, CVE-2013-1558, CVE-2013-1563, CVE-2013-1569, CVE-2013-2383,\nCVE-2013-2384, CVE-2013-2394, CVE-2013-2417, CVE-2013-2418, CVE-2013-2419,\nCVE-2013-2420, CVE-2013-2422, CVE-2013-2424, CVE-2013-2429, CVE-2013-2430,\nCVE-2013-2432, CVE-2013-2433, CVE-2013-2435, CVE-2013-2439, CVE-2013-2440)\n\nAll users of java-1.6.0-sun are advised to upgrade to these updated\npackages, which provide Oracle Java 6 Update 45. All running instances of\nOracle Java must be restarted for the update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:0758", "url": "https://access.redhat.com/errata/RHSA-2013:0758" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" }, { "category": "external", "summary": "920245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920245" }, { "category": "external", "summary": "920248", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920248" }, { "category": "external", "summary": "952387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952387" }, { "category": "external", "summary": "952509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952509" }, { "category": "external", "summary": "952521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952521" }, { "category": "external", "summary": "952524", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952524" }, { "category": "external", "summary": "952638", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952638" }, { "category": "external", "summary": "952640", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952640" }, { "category": "external", "summary": "952642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952642" }, { "category": "external", "summary": "952646", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "category": "external", "summary": "952648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952648" }, { "category": "external", "summary": "952656", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952656" }, { "category": "external", "summary": "952657", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952657" }, { "category": "external", "summary": "952708", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952708" }, { "category": "external", "summary": "952709", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952709" }, { "category": "external", "summary": "952711", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952711" }, { "category": "external", "summary": "953166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953166" }, { "category": "external", "summary": "953172", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953172" }, { "category": "external", "summary": "953265", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953265" }, { "category": "external", "summary": "953267", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953267" }, { "category": "external", "summary": "953269", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953269" }, { "category": "external", "summary": "953270", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953270" }, { "category": "external", "summary": "953273", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953273" }, { "category": "external", "summary": "953274", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953274" }, { "category": "external", "summary": "953275", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953275" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0758.json" } ], "title": "Red Hat Security Advisory: java-1.6.0-sun security update", "tracking": { "current_release_date": "2024-11-22T06:36:44+00:00", "generator": { "date": "2024-11-22T06:36:44+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2013:0758", "initial_release_date": "2013-04-18T18:19:00+00:00", "revision_history": [ { "date": "2013-04-18T18:19:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-11-13T10:57:42+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T06:36:44+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux Supplementary" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "product_id": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.45-1jpp.1.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "product": { "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "product_id": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.45-1jpp.1.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "product_id": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.45-1jpp.1.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.45-1jpp.1.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.45-1jpp.1.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "product_id": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.45-1jpp.1.el6?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "product_id": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.45-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "product": { "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "product_id": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.45-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "product_id": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.45-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.45-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.45-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "product_id": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.45-1jpp.1.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product_id": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.45-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product_id": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.45-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product_id": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.45-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.45-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product_id": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.45-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.45-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "product_id": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.45-1jpp.1.el5_9?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "product": { "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "product_id": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.45-1jpp.1.el5_9?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "product_id": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.45-1jpp.1.el5_9?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.45-1jpp.1.el5_9?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "product_id": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.45-1jpp.1.el5_9?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.45-1jpp.1.el5_9?arch=i586\u0026epoch=1" } } } ], "category": "architecture", "name": "i586" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586" }, "product_reference": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2013-0401", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920245" } ], "notes": [ { "category": "description", "text": "The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to execute arbitrary code via vectors related to AWT, as demonstrated by Ben Murphy during a Pwn2Own competition at CanSecWest 2013. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to invocation of the system class loader by the sun.awt.datatransfer.ClassLoaderObjectInputStream class, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0401" }, { "category": "external", "summary": "RHBZ#920245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920245" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0401", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0401" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0401", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0401" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)" }, { "cve": "CVE-2013-1491", "discovery_date": "2013-03-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "920248" } ], "notes": [ { "category": "description", "text": "The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via vectors related to 2D, as demonstrated by Joshua Drake during a Pwn2Own competition at CanSecWest 2013.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified sanbox bypass (CanSecWest 2013, 2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1491" }, { "category": "external", "summary": "RHBZ#920248", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=920248" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1491", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1491" } ], "release_date": "2013-03-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified sanbox bypass (CanSecWest 2013, 2D)" }, { "cve": "CVE-2013-1518", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952646" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JAXP missing security restrictions (JAXP, 6657673)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1518" }, { "category": "external", "summary": "RHBZ#952646", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1518", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1518" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1518", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1518" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: JAXP missing security restrictions (JAXP, 6657673)" }, { "cve": "CVE-2013-1537", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952387" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the default java.rmi.server.useCodebaseOnly setting of false, which allows remote attackers to perform \"dynamic class downloading\" and execute arbitrary code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: remote code loading enabled by default (RMI, 8001040)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1537" }, { "category": "external", "summary": "RHBZ#952387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952387" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1537", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1537" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1537", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1537" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: remote code loading enabled by default (RMI, 8001040)" }, { "cve": "CVE-2013-1540", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953166" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2433.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1540" }, { "category": "external", "summary": "RHBZ#953166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953166" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1540", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1540" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1540", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1540" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-1557", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952648" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions\" in the LogStream.setDefaultStream method.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1557" }, { "category": "external", "summary": "RHBZ#952648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952648" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1557", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1557" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1557", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1557" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)" }, { "cve": "CVE-2013-1558", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952640" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: java.beans.ThreadGroupContext missing restrictions (Beans, 7200507)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1558" }, { "category": "external", "summary": "RHBZ#952640", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952640" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1558", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1558" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1558", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1558" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: java.beans.ThreadGroupContext missing restrictions (Beans, 7200507)" }, { "cve": "CVE-2013-1563", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953172" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Install)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1563" }, { "category": "external", "summary": "RHBZ#953172", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953172" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1563", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1563" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1563", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1563" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Install)" }, { "cve": "CVE-2013-1569", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952711" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"checking of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1569" }, { "category": "external", "summary": "RHBZ#952711", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952711" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1569", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1569" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1569", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1569" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004994)" }, { "cve": "CVE-2013-2383", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952708" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2384, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"handling of [a] glyph table\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2383" }, { "category": "external", "summary": "RHBZ#952708", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952708" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2383", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2383" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2383", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2383" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004986)" }, { "cve": "CVE-2013-2384", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952709" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2383, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font layout\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2384" }, { "category": "external", "summary": "RHBZ#952709", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952709" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2384", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2384" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2384", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2384" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine font layout and glyph table errors (JDK 2D, 8004987)" }, { "cve": "CVE-2013-2394", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953265" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2432 and CVE-2013-1491.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2394" }, { "category": "external", "summary": "RHBZ#953265", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953265" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2394", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2394" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2394", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2394" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)" }, { "cve": "CVE-2013-2417", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952657" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to Networking. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an information leak involving InetAddress serialization. CVE has not investigated the apparent discrepancy between vendor reports regarding the impact of this issue.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2417" }, { "category": "external", "summary": "RHBZ#952657", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952657" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2417", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2417" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2417", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2417" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)" }, { "cve": "CVE-2013-2418", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953267" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2418" }, { "category": "external", "summary": "RHBZ#953267", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953267" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2418", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2418" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2418", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2418" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-2419", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952656" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"font processing errors\" in the International Components for Unicode (ICU) Layout Engine before 51.2.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine font processing errors (JDK 2D, 8001031)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2419" }, { "category": "external", "summary": "RHBZ#952656", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952656" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2419", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2419" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2419", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2419" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "ICU: Layout Engine font processing errors (JDK 2D, 8001031)" }, { "cve": "CVE-2013-2420", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952638" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient \"validation of images\" in share/native/sun/awt/image/awt_ImageRep.c, possibly involving offsets.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image processing vulnerability (2D, 8007617)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2420" }, { "category": "external", "summary": "RHBZ#952638", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952638" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2420", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2420" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2420", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2420" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image processing vulnerability (2D, 8007617)" }, { "cve": "CVE-2013-2422", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952642" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper method-invocation restrictions by the MethodUtil trampoline class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2422" }, { "category": "external", "summary": "RHBZ#952642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952642" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2422", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2422" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2422", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2422" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)" }, { "cve": "CVE-2013-2424", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952509" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality via vectors related to JMX. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient class access checks\" when \"creating new instances\" using MBeanInstantiator.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2424" }, { "category": "external", "summary": "RHBZ#952509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952509" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2424", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2424" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2424", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2424" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)" }, { "cve": "CVE-2013-2429", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952521" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"JPEGImageWriter state corruption\" when using native code, which triggers memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2429" }, { "category": "external", "summary": "RHBZ#952521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952521" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2429", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2429" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2429", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2429" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)" }, { "cve": "CVE-2013-2430", "discovery_date": "2013-04-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "952524" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; JavaFX 2.2.7 and earlier; and OpenJDK 6 and 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"JPEGImageReader state corruption\" when using native code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2430" }, { "category": "external", "summary": "RHBZ#952524", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952524" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2430", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2430" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2430", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2430" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)" }, { "cve": "CVE-2013-2432", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953269" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2394 and CVE-2013-1491.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2432" }, { "category": "external", "summary": "RHBZ#953269", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953269" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2432", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2432" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2432", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2432" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (2D)" }, { "cve": "CVE-2013-2433", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953270" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-1540.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2433" }, { "category": "external", "summary": "RHBZ#953270", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953270" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2433", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2433" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2433", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2433" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-2435", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953273" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2440.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2435" }, { "category": "external", "summary": "RHBZ#953273", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953273" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2435", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2435" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2435", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2435" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" }, { "cve": "CVE-2013-2439", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953274" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Install.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Install)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2439" }, { "category": "external", "summary": "RHBZ#953274", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953274" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2439", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2439" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2439", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2439" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Install)" }, { "cve": "CVE-2013-2440", "discovery_date": "2013-04-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "953275" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2435.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2440" }, { "category": "external", "summary": "RHBZ#953275", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953275" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2440", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2440" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2440", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2440" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" } ], "release_date": "2013-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-04-18T18:19:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0758" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Client-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6ComputeNode-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Server-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-demo-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-devel-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-jdbc-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-plugin-1:1.6.0.45-1jpp.1.el6.x86_64", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.i686", "6Workstation-Supplementary-6.4.z:java-1.6.0-sun-src-1:1.6.0.45-1jpp.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u21 and 6u45 (Deployment)" } ] }
ghsa-vch7-4rrr-p8p4
Vulnerability from github
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to "missing security restrictions."
{ "affected": [], "aliases": [ "CVE-2013-1518" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2013-04-17T18:55:00Z", "severity": "HIGH" }, "details": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions.\"", "id": "GHSA-vch7-4rrr-p8p4", "modified": "2022-05-14T00:02:55Z", "published": "2022-05-14T00:02:55Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1518" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16702" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19451" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19705" }, { "type": "WEB", "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0124" }, { "type": "WEB", "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0130" }, { "type": "WEB", "url": "http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released" }, { "type": "WEB", "url": "http://blog.fuseyism.com/index.php/2013/04/25/security-icedtea-1-11-11-1-12-5-for-openjdk-6-released" }, { "type": "WEB", "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880" }, { "type": "WEB", "url": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jaxp/rev/38d4d23d167c" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00007.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-updates/2013-05/msg00017.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-updates/2013-06/msg00099.html" }, { "type": "WEB", "url": "http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-April/022796.html" }, { "type": "WEB", "url": "http://marc.info/?l=bugtraq\u0026m=137283787217316\u0026w=2" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2013-0752.html" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2013-0757.html" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2013-0758.html" }, { "type": "WEB", "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:145" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:161" }, { "type": "WEB", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/59141" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/USN-1806-1" }, { "type": "WEB", "url": "http://www.us-cert.gov/ncas/alerts/TA13-107A" } ], "schema_version": "1.4.0", "severity": [] }
var-201304-0317
Vulnerability from variot
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to "missing security restrictions.". Oracle Java SE is prone to a remote vulnerability in Java Runtime Environment. The vulnerability can be exploited over multiple protocols. This issue affects the 'JAXP' sub-component. This vulnerability affects the following supported versions: 7 Update 17 , 6 Update 43 , 5.0 Update 41. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c03809278
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c03809278 Version: 1
HPSBUX02889 SSRT101252 rev.1 - HP-UX Running Java, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2013-07-01 Last Updated: 2013-07-01
Potential Security Impact: Remote unauthorized access, disclosure of information, and other vulnerabilities
Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY Potential security vulnerabilities have been identified in the Java Runtime Environment (JRE) and the Java Developer Kit (JDK) running on HP-UX. These vulnerabilities could allow remote unauthorized access, disclosure of information, and other exploits. HP-UX B.11.11, B.11.23, and B.11.31 running HP JDK and JRE v6.0.18 and earlier.
BACKGROUND
CVSS 2.0 Base Metrics
Reference Base Vector Base Score CVE-2013-0401 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1491 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1518 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1537 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1540 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3 CVE-2013-1557 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1558 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-1563 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6 CVE-2013-1569 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2383 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2384 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2394 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6 CVE-2013-2417 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2013-2418 (AV:L/AC:L/Au:N/C:P/I:P/A:P) 4.6 CVE-2013-2419 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2013-2420 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2422 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2424 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-2429 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6 CVE-2013-2430 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6 CVE-2013-2432 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2433 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3 CVE-2013-2434 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2435 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2439 (AV:L/AC:M/Au:N/C:C/I:C/A:C) 6.9 CVE-2013-2440 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002
RESOLUTION
HP has provided the following Java version upgrade to resolve these vulnerabilities. The upgrade is available from the following location
http://www.hp.com/java
OS Version Release Version
HP-UX B.11.11, B.11.23, B.11.31 JDK and JRE v6.0.19 or subsequent
MANUAL ACTIONS: Yes - Update For Java v6.0 update to Java v6.0.19 or subsequent
PRODUCT SPECIFIC INFORMATION
HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see https://www.hp.com/go/swa
The following text is for use by the HP-UX Software Assistant.
AFFECTED VERSIONS
HP-UX B.11.11 HP-UX B.11.23 =========== Jdk60.JDK60-COM Jdk60.JDK60-PA20 Jdk60.JDK60-PA20W Jre60.JRE60-COM Jre60.JRE60-COM-DOC Jre60.JRE60-PA20 Jre60.JRE60-PA20-HS Jre60.JRE60-PA20W Jre60.JRE60-PA20W-HS Jdk60.JDK60-IPF32 Jdk60.JDK60-IPF64 Jre60.JRE60-COM Jre60.JRE60-IPF32 Jre60.JRE60-IPF32-HS Jre60.JRE60-IPF64 Jre60.JRE60-IPF64-HS action: install revision 1.6.0.19.00 or subsequent
HP-UX B.11.23 HP-UX B.11.31 =========== Jdk60.JDK60-COM Jdk60.JDK60-IPF32 Jdk60.JDK60-IPF64 Jre60.JRE60-IPF32 Jre60.JRE60-IPF32-HS Jre60.JRE60-IPF64 Jre60.JRE60-IPF64-HS Jre60.JRE60-COM Jre60.JRE60-IPF32 Jre60.JRE60-IPF32-HS Jre60.JRE60-IPF64 Jre60.JRE60-IPF64-HS action: install revision 1.6.0.19.00 or subsequent
END AFFECTED VERSIONS
HISTORY
Version:1 (rev.1) - 1 July 2013 Initial release
Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.
Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.
Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com
Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins
Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/
Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.
3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX
Copyright 2013 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits;damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. ========================================================================== Ubuntu Security Notice USN-1806-1 April 23, 2013
openjdk-7 vulnerabilities
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.10
Summary:
Several security issues were fixed in OpenJDK 7. (CVE-2013-0401)
James Forshaw discovered a vulnerability in the OpenJDK JRE related to information disclosure, data integrity and availability. An attacker could exploit these to cause a denial of service or expose sensitive data over the network. (CVE-2013-1518, CVE-2013-1537, CVE-2013-1557, CVE-2013-1569, CVE-2013-2383, CVE-2013-2384, CVE-2013-2420, CVE-2013-2421, CVE-2013-2422, CVE-2013-2426, CVE-2013-2429, CVE-2013-2430, CVE-2013-2431, CVE-2013-2436)
Two vulnerabilities were discovered in the OpenJDK JRE related to confidentiality. An attacker could exploit these to expose sensitive data over the network. (CVE-2013-2415, CVE-2013-2424)
Two vulnerabilities were discovered in the OpenJDK JRE related to availability. An attacker could exploit these to cause a denial of service. (CVE-2013-2417, CVE-2013-2419)
A vulnerability was discovered in the OpenJDK JRE related to data integrity. (CVE-2013-2423)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 12.10: icedtea-7-jre-jamvm 7u21-2.3.9-0ubuntu0.12.10.1 openjdk-7-jre 7u21-2.3.9-0ubuntu0.12.10.1 openjdk-7-jre-headless 7u21-2.3.9-0ubuntu0.12.10.1 openjdk-7-jre-lib 7u21-2.3.9-0ubuntu0.12.10.1 openjdk-7-jre-zero 7u21-2.3.9-0ubuntu0.12.10.1
This update uses a new upstream release, which includes additional bug fixes.
Background
IcedTea is a distribution of the Java OpenJDK source code built with free build tools. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
===================================================================== Red Hat Security Advisory
Synopsis: Important: java-1.7.0-openjdk security update Advisory ID: RHSA-2013:0752-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2013-0752.html Issue date: 2013-04-17 CVE Names: CVE-2013-0401 CVE-2013-1488 CVE-2013-1518 CVE-2013-1537 CVE-2013-1557 CVE-2013-1558 CVE-2013-1569 CVE-2013-2383 CVE-2013-2384 CVE-2013-2415 CVE-2013-2417 CVE-2013-2419 CVE-2013-2420 CVE-2013-2421 CVE-2013-2422 CVE-2013-2423 CVE-2013-2424 CVE-2013-2426 CVE-2013-2429 CVE-2013-2430 CVE-2013-2431 CVE-2013-2436 =====================================================================
- Summary:
Updated java-1.7.0-openjdk packages that fix various security issues are now available for Red Hat Enterprise Linux 5.
The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.
- Relevant releases/architectures:
Red Hat Enterprise Linux (v. 5 server) - i386, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64
- Description:
These packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Software Development Kit.
Multiple flaws were discovered in the font layout engine in the 2D component. An untrusted Java application or applet could possibly use these flaws to trigger Java Virtual Machine memory corruption. (CVE-2013-1569, CVE-2013-2383, CVE-2013-2384)
Multiple improper permission check issues were discovered in the Beans, Libraries, JAXP, and RMI components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. (CVE-2013-1558, CVE-2013-2422, CVE-2013-2436, CVE-2013-1518, CVE-2013-1557)
The previous default value of the java.rmi.server.useCodebaseOnly property permitted the RMI implementation to automatically load classes from remotely specified locations. An attacker able to connect to an application using RMI could use this flaw to make the application execute arbitrary code. (CVE-2013-1537)
Note: The fix for CVE-2013-1537 changes the default value of the property to true, restricting class loading to the local CLASSPATH and locations specified in the java.rmi.server.codebase property. Refer to Red Hat Bugzilla bug 952387 for additional details.
The 2D component did not properly process certain images. An untrusted Java application or applet could possibly use this flaw to trigger Java Virtual Machine memory corruption. (CVE-2013-2420)
It was discovered that the Hotspot component did not properly handle certain intrinsic frames, and did not correctly perform access checks and MethodHandle lookups. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. (CVE-2013-2431, CVE-2013-2421, CVE-2013-2423)
It was discovered that JPEGImageReader and JPEGImageWriter in the ImageIO component did not protect against modification of their state while performing certain native code operations. An untrusted Java application or applet could possibly use these flaws to trigger Java Virtual Machine memory corruption. (CVE-2013-2429, CVE-2013-2430)
The JDBC driver manager could incorrectly call the toString() method in JDBC drivers, and the ConcurrentHashMap class could incorrectly call the defaultReadObject() method. An untrusted Java application or applet could possibly use these flaws to bypass Java sandbox restrictions. (CVE-2013-1488, CVE-2013-2426)
The sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader. An untrusted Java application or applet could possibly use this flaw to bypass certain Java sandbox restrictions. (CVE-2013-0401)
Flaws were discovered in the Network component's InetAddress serialization, and the 2D component's font handling. An untrusted Java application or applet could possibly use these flaws to crash the Java Virtual Machine. (CVE-2013-2417, CVE-2013-2419)
The MBeanInstantiator class implementation in the OpenJDK JMX component did not properly check class access before creating new instances. An untrusted Java application or applet could use this flaw to create instances of non-public classes. (CVE-2013-2424)
It was discovered that JAX-WS could possibly create temporary files with insecure permissions. A local attacker could use this flaw to access temporary files created by an application using JAX-WS. (CVE-2013-2415)
This erratum also upgrades the OpenJDK package to IcedTea7 2.3.9. Refer to the NEWS file, linked to in the References, for further information.
All users of java-1.7.0-openjdk are advised to upgrade to these updated packages, which resolve these issues. All running instances of OpenJDK Java must be restarted for the update to take effect.
- Solution:
Before applying this update, make sure all previously-released errata relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258
- Bugs fixed (http://bugzilla.redhat.com/):
920245 - CVE-2013-0401 OpenJDK: unspecified sandbox bypass (CanSecWest 2013, AWT) 920247 - CVE-2013-1488 OpenJDK: unspecified sanbox bypass (CanSecWest 2013, Libraries) 952387 - CVE-2013-1537 OpenJDK: remote code loading enabled by default (RMI, 8001040) 952389 - CVE-2013-2415 OpenJDK: temporary files created with insecure permissions (JAX-WS, 8003542) 952398 - CVE-2013-2423 OpenJDK: incorrect setter access checks in MethodHandles (Hostspot, 8009677) 952509 - CVE-2013-2424 OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435) 952521 - CVE-2013-2429 OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918) 952524 - CVE-2013-2430 OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667) 952550 - CVE-2013-2436 OpenJDK: Wrapper.convert insufficient type checks (Libraries, 8009049) 952638 - CVE-2013-2420 OpenJDK: image processing vulnerability (2D, 8007617) 952640 - CVE-2013-1558 OpenJDK: java.beans.ThreadGroupContext missing restrictions (Beans, 7200507) 952642 - CVE-2013-2422 OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857) 952645 - CVE-2013-2431 OpenJDK: Hotspot intrinsic frames vulnerability (Hotspot, 8004336) 952646 - CVE-2013-1518 OpenJDK: JAXP missing security restrictions (JAXP, 6657673) 952648 - CVE-2013-1557 OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329) 952649 - CVE-2013-2421 OpenJDK: Hotspot MethodHandle lookup error (Hotspot, 8009699) 952653 - CVE-2013-2426 OpenJDK: ConcurrentHashMap incorrectly calls defaultReadObject() method (Libraries, 8009063) 952656 - CVE-2013-2419 OpenJDK: font processing errors (2D, 8001031) 952657 - CVE-2013-2417 OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724) 952708 - CVE-2013-2383 OpenJDK: font layout and glyph table errors (2D, 8004986) 952709 - CVE-2013-2384 OpenJDK: font layout and glyph table errors (2D, 8004987) 952711 - CVE-2013-1569 OpenJDK: font layout and glyph table errors (2D, 8004994)
- Package List:
Red Hat Enterprise Linux Desktop (v. 5 client):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Client/en/os/SRPMS/java-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.src.rpm
i386: java-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.i386.rpm java-1.7.0-openjdk-debuginfo-1.7.0.19-2.3.9.1.el5_9.i386.rpm java-1.7.0-openjdk-demo-1.7.0.19-2.3.9.1.el5_9.i386.rpm java-1.7.0-openjdk-devel-1.7.0.19-2.3.9.1.el5_9.i386.rpm java-1.7.0-openjdk-javadoc-1.7.0.19-2.3.9.1.el5_9.i386.rpm java-1.7.0-openjdk-src-1.7.0.19-2.3.9.1.el5_9.i386.rpm
x86_64: java-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm java-1.7.0-openjdk-debuginfo-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm java-1.7.0-openjdk-demo-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm java-1.7.0-openjdk-devel-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm java-1.7.0-openjdk-javadoc-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm java-1.7.0-openjdk-src-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm
Red Hat Enterprise Linux (v. 5 server):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/os/SRPMS/java-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.src.rpm
i386: java-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.i386.rpm java-1.7.0-openjdk-debuginfo-1.7.0.19-2.3.9.1.el5_9.i386.rpm java-1.7.0-openjdk-demo-1.7.0.19-2.3.9.1.el5_9.i386.rpm java-1.7.0-openjdk-devel-1.7.0.19-2.3.9.1.el5_9.i386.rpm java-1.7.0-openjdk-javadoc-1.7.0.19-2.3.9.1.el5_9.i386.rpm java-1.7.0-openjdk-src-1.7.0.19-2.3.9.1.el5_9.i386.rpm
x86_64: java-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm java-1.7.0-openjdk-debuginfo-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm java-1.7.0-openjdk-demo-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm java-1.7.0-openjdk-devel-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm java-1.7.0-openjdk-javadoc-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm java-1.7.0-openjdk-src-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package
- References:
https://www.redhat.com/security/data/cve/CVE-2013-0401.html https://www.redhat.com/security/data/cve/CVE-2013-1488.html https://www.redhat.com/security/data/cve/CVE-2013-1518.html https://www.redhat.com/security/data/cve/CVE-2013-1537.html https://www.redhat.com/security/data/cve/CVE-2013-1557.html https://www.redhat.com/security/data/cve/CVE-2013-1558.html https://www.redhat.com/security/data/cve/CVE-2013-1569.html https://www.redhat.com/security/data/cve/CVE-2013-2383.html https://www.redhat.com/security/data/cve/CVE-2013-2384.html https://www.redhat.com/security/data/cve/CVE-2013-2415.html https://www.redhat.com/security/data/cve/CVE-2013-2417.html https://www.redhat.com/security/data/cve/CVE-2013-2419.html https://www.redhat.com/security/data/cve/CVE-2013-2420.html https://www.redhat.com/security/data/cve/CVE-2013-2421.html https://www.redhat.com/security/data/cve/CVE-2013-2422.html https://www.redhat.com/security/data/cve/CVE-2013-2423.html https://www.redhat.com/security/data/cve/CVE-2013-2424.html https://www.redhat.com/security/data/cve/CVE-2013-2426.html https://www.redhat.com/security/data/cve/CVE-2013-2429.html https://www.redhat.com/security/data/cve/CVE-2013-2430.html https://www.redhat.com/security/data/cve/CVE-2013-2431.html https://www.redhat.com/security/data/cve/CVE-2013-2436.html https://access.redhat.com/security/updates/classification/#important http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.9/NEWS
- Contact:
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/
Copyright 2013 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux)
iD8DBQFRbvJKXlSAg2UNWIIRAqUrAJ9Z/4p4Hfhem2IW/HyrENsM6alnkACeJrNj u7V5CaCh5MYZ84AllqEIm+E= =pvGZ -----END PGP SIGNATURE-----
-- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201401-30
http://security.gentoo.org/
Severity: High Title: Oracle JRE/JDK: Multiple vulnerabilities Date: January 27, 2014 Bugs: #404071, #421073, #433094, #438706, #451206, #455174, #458444, #460360, #466212, #473830, #473980, #488210, #498148 ID: 201401-30
Synopsis
Multiple vulnerabilities have been found in the Oracle JRE/JDK, allowing attackers to cause unspecified impact.
Background
The Oracle Java Development Kit (JDK) (formerly known as Sun JDK) and the Oracle Java Runtime Environment (JRE) (formerly known as Sun JRE) provide the Oracle Java platform (formerly known as Sun Java Platform). Users should migrate to another package if one is available or wait for the existing packages to be marked stable by their architecture maintainers. ------------------------------------------------------------------- NOTE: Packages marked with asterisks require manual intervention! ------------------------------------------------------------------- 5 affected packages
Description
Multiple vulnerabilities have been reported in the Oracle Java implementation. Please review the CVE identifiers referenced below for details. Furthermore, a local or remote attacker could exploit these vulnerabilities to cause unspecified impact, possibly including remote execution of arbitrary code.
Workaround
There is no known workaround at this time.
Resolution
All Oracle JDK 1.7 users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot -v ">=dev-java/oracle-jdk-bin-1.7.0.51"
All Oracle JRE 1.7 users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot -v ">=dev-java/oracle-jre-bin-1.7.0.51"
All users of the precompiled 32-bit Oracle JRE should upgrade to the latest version:
# emerge --sync # emerge -a -1 -v ">=app-emulation/emul-linux-x86-java-1.7.0.51"
All Sun Microsystems JDK/JRE 1.6 users are suggested to upgrade to one of the newer Oracle packages like dev-java/oracle-jdk-bin or dev-java/oracle-jre-bin or choose another alternative we provide; eg. the IBM JDK/JRE or the open source IcedTea.
References
[ 1 ] CVE-2011-3563 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3563 [ 2 ] CVE-2011-5035 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-5035 [ 3 ] CVE-2012-0497 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0497 [ 4 ] CVE-2012-0498 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0498 [ 5 ] CVE-2012-0499 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0499 [ 6 ] CVE-2012-0500 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0500 [ 7 ] CVE-2012-0501 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0501 [ 8 ] CVE-2012-0502 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0502 [ 9 ] CVE-2012-0503 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0503 [ 10 ] CVE-2012-0504 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0504 [ 11 ] CVE-2012-0505 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0505 [ 12 ] CVE-2012-0506 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0506 [ 13 ] CVE-2012-0507 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0507 [ 14 ] CVE-2012-0547 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0547 [ 15 ] CVE-2012-1531 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1531 [ 16 ] CVE-2012-1532 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1532 [ 17 ] CVE-2012-1533 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1533 [ 18 ] CVE-2012-1541 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1541 [ 19 ] CVE-2012-1682 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1682 [ 20 ] CVE-2012-1711 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1711 [ 21 ] CVE-2012-1713 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1713 [ 22 ] CVE-2012-1716 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1716 [ 23 ] CVE-2012-1717 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1717 [ 24 ] CVE-2012-1718 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1718 [ 25 ] CVE-2012-1719 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1719 [ 26 ] CVE-2012-1721 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1721 [ 27 ] CVE-2012-1722 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1722 [ 28 ] CVE-2012-1723 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1723 [ 29 ] CVE-2012-1724 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1724 [ 30 ] CVE-2012-1725 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1725 [ 31 ] CVE-2012-1726 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1726 [ 32 ] CVE-2012-3136 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3136 [ 33 ] CVE-2012-3143 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3143 [ 34 ] CVE-2012-3159 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3159 [ 35 ] CVE-2012-3174 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3174 [ 36 ] CVE-2012-3213 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3213 [ 37 ] CVE-2012-3216 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3216 [ 38 ] CVE-2012-3342 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3342 [ 39 ] CVE-2012-4416 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4416 [ 40 ] CVE-2012-4681 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4681 [ 41 ] CVE-2012-5067 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5067 [ 42 ] CVE-2012-5068 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5068 [ 43 ] CVE-2012-5069 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5069 [ 44 ] CVE-2012-5070 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5070 [ 45 ] CVE-2012-5071 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5071 [ 46 ] CVE-2012-5072 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5072 [ 47 ] CVE-2012-5073 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5073 [ 48 ] CVE-2012-5074 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5074 [ 49 ] CVE-2012-5075 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5075 [ 50 ] CVE-2012-5076 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5076 [ 51 ] CVE-2012-5077 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5077 [ 52 ] CVE-2012-5079 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5079 [ 53 ] CVE-2012-5081 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5081 [ 54 ] CVE-2012-5083 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5083 [ 55 ] CVE-2012-5084 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5084 [ 56 ] CVE-2012-5085 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5085 [ 57 ] CVE-2012-5086 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5086 [ 58 ] CVE-2012-5087 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5087 [ 59 ] CVE-2012-5088 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5088 [ 60 ] CVE-2012-5089 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5089 [ 61 ] CVE-2013-0169 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0169 [ 62 ] CVE-2013-0351 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0351 [ 63 ] CVE-2013-0401 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0401 [ 64 ] CVE-2013-0402 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0402 [ 65 ] CVE-2013-0409 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0409 [ 66 ] CVE-2013-0419 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0419 [ 67 ] CVE-2013-0422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0422 [ 68 ] CVE-2013-0423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0423 [ 69 ] CVE-2013-0430 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0430 [ 70 ] CVE-2013-0437 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0437 [ 71 ] CVE-2013-0438 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0438 [ 72 ] CVE-2013-0445 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0445 [ 73 ] CVE-2013-0446 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0446 [ 74 ] CVE-2013-0448 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0448 [ 75 ] CVE-2013-0449 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0449 [ 76 ] CVE-2013-0809 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0809 [ 77 ] CVE-2013-1473 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1473 [ 78 ] CVE-2013-1479 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1479 [ 79 ] CVE-2013-1481 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1481 [ 80 ] CVE-2013-1484 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1484 [ 81 ] CVE-2013-1485 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1485 [ 82 ] CVE-2013-1486 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1486 [ 83 ] CVE-2013-1487 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1487 [ 84 ] CVE-2013-1488 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1488 [ 85 ] CVE-2013-1491 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1491 [ 86 ] CVE-2013-1493 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1493 [ 87 ] CVE-2013-1500 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1500 [ 88 ] CVE-2013-1518 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1518 [ 89 ] CVE-2013-1537 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1537 [ 90 ] CVE-2013-1540 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1540 [ 91 ] CVE-2013-1557 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1557 [ 92 ] CVE-2013-1558 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1558 [ 93 ] CVE-2013-1561 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1561 [ 94 ] CVE-2013-1563 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1563 [ 95 ] CVE-2013-1564 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1564 [ 96 ] CVE-2013-1569 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1569 [ 97 ] CVE-2013-1571 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1571 [ 98 ] CVE-2013-2383 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2383 [ 99 ] CVE-2013-2384 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2384 [ 100 ] CVE-2013-2394 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2394 [ 101 ] CVE-2013-2400 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2400 [ 102 ] CVE-2013-2407 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2407 [ 103 ] CVE-2013-2412 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2412 [ 104 ] CVE-2013-2414 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2414 [ 105 ] CVE-2013-2415 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2415 [ 106 ] CVE-2013-2416 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2416 [ 107 ] CVE-2013-2417 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2417 [ 108 ] CVE-2013-2418 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2418 [ 109 ] CVE-2013-2419 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2419 [ 110 ] CVE-2013-2420 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2420 [ 111 ] CVE-2013-2421 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2421 [ 112 ] CVE-2013-2422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2422 [ 113 ] CVE-2013-2423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2423 [ 114 ] CVE-2013-2424 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2424 [ 115 ] CVE-2013-2425 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2425 [ 116 ] CVE-2013-2426 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2426 [ 117 ] CVE-2013-2427 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2427 [ 118 ] CVE-2013-2428 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2428 [ 119 ] CVE-2013-2429 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2429 [ 120 ] CVE-2013-2430 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2430 [ 121 ] CVE-2013-2431 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2431 [ 122 ] CVE-2013-2432 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2432 [ 123 ] CVE-2013-2433 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2433 [ 124 ] CVE-2013-2434 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2434 [ 125 ] CVE-2013-2435 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2435 [ 126 ] CVE-2013-2436 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2436 [ 127 ] CVE-2013-2437 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2437 [ 128 ] CVE-2013-2438 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2438 [ 129 ] CVE-2013-2439 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2439 [ 130 ] CVE-2013-2440 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2440 [ 131 ] CVE-2013-2442 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2442 [ 132 ] CVE-2013-2443 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2443 [ 133 ] CVE-2013-2444 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2444 [ 134 ] CVE-2013-2445 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2445 [ 135 ] CVE-2013-2446 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2446 [ 136 ] CVE-2013-2447 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2447 [ 137 ] CVE-2013-2448 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2448 [ 138 ] CVE-2013-2449 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2449 [ 139 ] CVE-2013-2450 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2450 [ 140 ] CVE-2013-2451 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2451 [ 141 ] CVE-2013-2452 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2452 [ 142 ] CVE-2013-2453 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2453 [ 143 ] CVE-2013-2454 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2454 [ 144 ] CVE-2013-2455 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2455 [ 145 ] CVE-2013-2456 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2456 [ 146 ] CVE-2013-2457 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2457 [ 147 ] CVE-2013-2458 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2458 [ 148 ] CVE-2013-2459 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2459 [ 149 ] CVE-2013-2460 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2460 [ 150 ] CVE-2013-2461 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2461 [ 151 ] CVE-2013-2462 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2462 [ 152 ] CVE-2013-2463 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2463 [ 153 ] CVE-2013-2464 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2464 [ 154 ] CVE-2013-2465 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2465 [ 155 ] CVE-2013-2466 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2466 [ 156 ] CVE-2013-2467 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2467 [ 157 ] CVE-2013-2468 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2468 [ 158 ] CVE-2013-2469 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2469 [ 159 ] CVE-2013-2470 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2470 [ 160 ] CVE-2013-2471 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2471 [ 161 ] CVE-2013-2472 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2472 [ 162 ] CVE-2013-2473 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2473 [ 163 ] CVE-2013-3743 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3743 [ 164 ] CVE-2013-3744 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3744 [ 165 ] CVE-2013-3829 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3829 [ 166 ] CVE-2013-5772 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5772 [ 167 ] CVE-2013-5774 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5774 [ 168 ] CVE-2013-5775 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5775 [ 169 ] CVE-2013-5776 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5776 [ 170 ] CVE-2013-5777 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5777 [ 171 ] CVE-2013-5778 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5778 [ 172 ] CVE-2013-5780 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5780 [ 173 ] CVE-2013-5782 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5782 [ 174 ] CVE-2013-5783 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5783 [ 175 ] CVE-2013-5784 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5784 [ 176 ] CVE-2013-5787 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5787 [ 177 ] CVE-2013-5788 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5788 [ 178 ] CVE-2013-5789 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5789 [ 179 ] CVE-2013-5790 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5790 [ 180 ] CVE-2013-5797 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5797 [ 181 ] CVE-2013-5800 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5800 [ 182 ] CVE-2013-5801 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5801 [ 183 ] CVE-2013-5802 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5802 [ 184 ] CVE-2013-5803 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5803 [ 185 ] CVE-2013-5804 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5804 [ 186 ] CVE-2013-5805 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5805 [ 187 ] CVE-2013-5806 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5806 [ 188 ] CVE-2013-5809 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5809 [ 189 ] CVE-2013-5810 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5810 [ 190 ] CVE-2013-5812 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5812 [ 191 ] CVE-2013-5814 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5814 [ 192 ] CVE-2013-5817 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5817 [ 193 ] CVE-2013-5818 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5818 [ 194 ] CVE-2013-5819 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5819 [ 195 ] CVE-2013-5820 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5820 [ 196 ] CVE-2013-5823 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5823 [ 197 ] CVE-2013-5824 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5824 [ 198 ] CVE-2013-5825 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5825 [ 199 ] CVE-2013-5829 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5829 [ 200 ] CVE-2013-5830 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5830 [ 201 ] CVE-2013-5831 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5831 [ 202 ] CVE-2013-5832 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5832 [ 203 ] CVE-2013-5838 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5838 [ 204 ] CVE-2013-5840 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5840 [ 205 ] CVE-2013-5842 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5842 [ 206 ] CVE-2013-5843 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5843 [ 207 ] CVE-2013-5844 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5844 [ 208 ] CVE-2013-5846 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5846 [ 209 ] CVE-2013-5848 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5848 [ 210 ] CVE-2013-5849 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5849 [ 211 ] CVE-2013-5850 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5850 [ 212 ] CVE-2013-5851 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5851 [ 213 ] CVE-2013-5852 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5852 [ 214 ] CVE-2013-5854 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5854 [ 215 ] CVE-2013-5870 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5870 [ 216 ] CVE-2013-5878 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5878 [ 217 ] CVE-2013-5887 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5887 [ 218 ] CVE-2013-5888 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5888 [ 219 ] CVE-2013-5889 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5889 [ 220 ] CVE-2013-5893 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5893 [ 221 ] CVE-2013-5895 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5895 [ 222 ] CVE-2013-5896 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5896 [ 223 ] CVE-2013-5898 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5898 [ 224 ] CVE-2013-5899 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5899 [ 225 ] CVE-2013-5902 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5902 [ 226 ] CVE-2013-5904 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5904 [ 227 ] CVE-2013-5905 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5905 [ 228 ] CVE-2013-5906 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5906 [ 229 ] CVE-2013-5907 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5907 [ 230 ] CVE-2013-5910 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5910 [ 231 ] CVE-2014-0368 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0368 [ 232 ] CVE-2014-0373 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0373 [ 233 ] CVE-2014-0375 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0375 [ 234 ] CVE-2014-0376 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0376 [ 235 ] CVE-2014-0382 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0382 [ 236 ] CVE-2014-0385 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0385 [ 237 ] CVE-2014-0387 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0387 [ 238 ] CVE-2014-0403 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0403 [ 239 ] CVE-2014-0408 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0408 [ 240 ] CVE-2014-0410 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0410 [ 241 ] CVE-2014-0411 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0411 [ 242 ] CVE-2014-0415 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0415 [ 243 ] CVE-2014-0416 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0416 [ 244 ] CVE-2014-0417 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0417 [ 245 ] CVE-2014-0418 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0418 [ 246 ] CVE-2014-0422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0422 [ 247 ] CVE-2014-0423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0423 [ 248 ] CVE-2014-0424 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0424 [ 249 ] CVE-2014-0428 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0428
Availability
This GLSA and any updates to it are available for viewing at the Gentoo Security Website:
http://security.gentoo.org/glsa/glsa-201401-30.xml
Concerns?
Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.
License
Copyright 2014 Gentoo Foundation, Inc; referenced text belongs to its owner(s).
The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.
http://creativecommons.org/licenses/by-sa/2.5 . The verification of md5 checksums and GPG signatures is performed automatically for you.
All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing:
gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
You can view other update advisories for Mandriva Linux at:
http://www.mandriva.com/en/support/security/advisories/
If you want to report vulnerabilities, please contact
security_(at)_mandriva.com
Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team
iD8DBQFRcSLkmqjQ0CJFipgRAsEgAJ4gHSUUcP7uDS3JIxzQZxnCLwXe1QCfTQXq o4NG1rmFdAUfR4q/O/aHdtM= =EXuM -----END PGP SIGNATURE-----
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", "affected_products": { "@id": "https://www.variotdbs.pl/ref/affected_products" }, "configurations": { "@id": "https://www.variotdbs.pl/ref/configurations" }, "credits": { "@id": "https://www.variotdbs.pl/ref/credits" }, "cvss": { "@id": "https://www.variotdbs.pl/ref/cvss/" }, "description": { "@id": "https://www.variotdbs.pl/ref/description/" }, "exploit_availability": { "@id": "https://www.variotdbs.pl/ref/exploit_availability/" }, "external_ids": { "@id": "https://www.variotdbs.pl/ref/external_ids/" }, "iot": { "@id": "https://www.variotdbs.pl/ref/iot/" }, "iot_taxonomy": { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/" }, "patch": { "@id": "https://www.variotdbs.pl/ref/patch/" }, "problemtype_data": { "@id": "https://www.variotdbs.pl/ref/problemtype_data/" }, "references": { "@id": "https://www.variotdbs.pl/ref/references/" }, "sources": { "@id": "https://www.variotdbs.pl/ref/sources/" }, "sources_release_date": { "@id": "https://www.variotdbs.pl/ref/sources_release_date/" }, "sources_update_date": { "@id": "https://www.variotdbs.pl/ref/sources_update_date/" }, "threat_type": { "@id": "https://www.variotdbs.pl/ref/threat_type/" }, "title": { "@id": "https://www.variotdbs.pl/ref/title/" }, "type": { "@id": "https://www.variotdbs.pl/ref/type/" } }, "@id": "https://www.variotdbs.pl/vuln/VAR-201304-0317", "affected_products": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "model": "jre", "scope": "eq", "trust": 1.6, "vendor": "oracle", "version": "1.6.0" }, { "model": "jdk", "scope": "eq", "trust": 1.6, "vendor": "oracle", "version": "1.6.0" }, { "model": "jre", "scope": "eq", "trust": 1.0, "vendor": "sun", "version": "1.5.0" }, { "model": "jdk", "scope": "eq", "trust": 1.0, "vendor": "oracle", "version": "1.7.0" }, { "model": "jre", "scope": "lte", "trust": 1.0, "vendor": "oracle", "version": "1.5.0" }, { "model": "jre", "scope": "eq", "trust": 1.0, "vendor": "oracle", "version": "1.5.0" }, { "model": "jre", "scope": "lte", "trust": 1.0, "vendor": "oracle", "version": "1.7.0" }, { "model": "jre", "scope": "eq", "trust": 1.0, "vendor": "oracle", "version": "1.7.0" }, { "model": "jdk", "scope": "eq", "trust": 1.0, "vendor": "sun", "version": "1.6.0" }, { "model": "jdk", "scope": "lte", "trust": 1.0, "vendor": "oracle", "version": "1.6.0" }, { "model": "jdk", "scope": "eq", "trust": 1.0, "vendor": "sun", "version": "1.5.0" }, { "model": "jdk", "scope": "lte", "trust": 1.0, "vendor": "oracle", "version": "1.5.0" }, { "model": "jdk", "scope": "eq", "trust": 1.0, "vendor": "oracle", "version": "1.5.0" }, { "model": "jre", "scope": "eq", "trust": 1.0, "vendor": "sun", "version": "1.6.0" }, { "model": "jre", "scope": "lte", "trust": 1.0, "vendor": "oracle", "version": "1.6.0" }, { "model": "jdk", "scope": "lte", "trust": 1.0, "vendor": "oracle", "version": "1.7.0" }, { "model": "jre 1.6.0 03", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 17", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 1.7.0 8", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 30", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.5.0 32", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.5.0 39", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 15", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jre 1.5.0 17", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 01", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jre 1.6.0 18", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 35", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.5.0 16", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 22", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 05", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 1.6.0 28", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 14", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jdk 1.6.0 21", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 20", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 32", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 38", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 25", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 43", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 07", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 1.6.0 35", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.5.0 31", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 18", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 27", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 06", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jdk 1.6.0 19", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.5.0 23", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.7.0 10", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 18", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jre 05", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jdk 1.6.0 03", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 17", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 1.6.0 39", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.7.0 2", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 10", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 1.7.0 8", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.7.0 2", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.5.0 20", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.5.0 12", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.7.0 13", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 14", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.7.0 12", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 04", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 1.5.0 36", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.7.0 10", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 04", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 1.6.0 25", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.5.0 35", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.5.0 41", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.5.0 32", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.5.0 36", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.5.0 38", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 37", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.5.0 11", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 27", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.5.0 38", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.7.0 11", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.5.0 14", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 15", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 30", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 16", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jdk 1.5.0 25", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 04", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jre 12", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 1.5.0 26", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.5.0 33", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.7.0 7", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.7" }, { "model": "jre 03", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jre 1.6.0 02", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 1.6.0 23", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 01", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.7.0 4", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.5.0 28", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.7.0 9", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 06", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 1.6.0 19", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.7.0 9", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.7.0 13", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 38", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 15", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 22", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jre 07", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 1.7.0 11", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.5.0 20", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 43", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.5.0 29", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 28", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 23", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.5.0 39", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 11", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.5.0 35", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 17", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jre 1.5.0 23", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 14", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jre 13", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 02", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jdk 1.7.0 7", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 32", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 02", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.5.0 27", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.5.0 13", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.5.0 10", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.5.0 28", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 05", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 1.7.0 4", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 01", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jdk 1.6.0 26", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.5.0 30", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.5.0 33", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 26", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 21", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 24", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.5.0 25", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 06", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 1.5.0 27", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 22", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jdk 11", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 18", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jdk 10", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk", "scope": "eq", "trust": 0.9, "vendor": "oracle", "version": "1.7" }, { "model": "jdk 1.5.0 26", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 22", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 24", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.5.0 29", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.7.0 17", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.5.0 31", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.5.0 30", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 15", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jre 02", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jdk 13", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk .0 05", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jdk 1.6.0 39", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 0 10", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.5" }, { "model": "jre 1.5.0 13", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.5.0 24", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.5.0.0 11", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jre 1.5.0.0 09", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jdk 11-b03", "scope": "eq", "trust": 0.6, "vendor": "sun", "version": "1.5" }, { "model": "jdk 1.5.0 12", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jdk 1.7.0 17", "scope": null, "trust": 0.6, "vendor": "oracle", "version": null }, { "model": "jdk .0 04", "scope": "eq", "trust": 0.6, "vendor": "sun", "version": "1.5" }, { "model": "jdk 01-b06", "scope": "eq", "trust": 0.6, "vendor": "sun", "version": "1.6" }, { "model": "jdk 1.5.0 41", "scope": null, "trust": 0.6, "vendor": "oracle", "version": null }, { "model": "jdk .0 03", "scope": "eq", "trust": 0.6, "vendor": "sun", "version": "1.5" }, { "model": "jdk 1.5.0.0 08", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jre 1.7.0 12", "scope": null, "trust": 0.6, "vendor": "oracle", "version": null }, { "model": "jdk 1.5.0.0 09", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jre 1.5.0.0 07", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 2", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 01", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jdk 07-b03", "scope": "eq", "trust": 0.6, "vendor": "sun", "version": "1.5" }, { "model": "jdk 06", "scope": "eq", "trust": 0.6, "vendor": "sun", "version": "1.5" }, { "model": "jre 1.5.0.0 08", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 20", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jdk 1.5.0.0 12", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "cosminexus developer", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "5.0" }, { "model": "linux", "scope": "eq", "trust": 0.3, "vendor": "ubuntu", "version": "11.10" }, { "model": "one-x client enablement service sp2", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.1" }, { "model": "enterprise linux server", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "trio tview software", "scope": "eq", "trust": 0.3, "vendor": "schneider electric", "version": "3.27.0" }, { "model": "cms r15", "scope": null, "trust": 0.3, "vendor": "avaya", "version": null }, { "model": "intelligent operations center", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "1.5.0.2" }, { "model": "one-x client enablement service sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.3" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.2" }, { "model": "tivoli provisioning manager for software", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "5.1.1.3" }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "jdk 01", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2.1" }, { "model": "maximo asset management essentials", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1" }, { "model": "cms r16.3", "scope": null, "trust": 0.3, "vendor": "avaya", "version": null }, { "model": "tivoli application dependency discovery manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2.11" }, { "model": "websphere cast iron cloud integration virtual applianc", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.1" }, { "model": "trio tview software", "scope": "ne", "trust": 0.3, "vendor": "schneider electric", "version": "3.29.0" }, { "model": "tivoli provisioning manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2.1" }, { "model": "ucosminexus application server enterprise", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "02-00" }, { "model": "virtualization engine ts7700", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "8.31.0.89" }, { "model": "ucosminexus application server standard", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "0" }, { "model": "one-x client enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.3" }, { "model": "cosminexus server web edition", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "4" }, { "model": "ucosminexus application server express", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "09-70" }, { "model": "websphere cast iron cloud integration studio", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.1" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "lotus notes fix pack", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "8.5.35" }, { "model": "tivoli composite application manager for transactions", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1.0.1" }, { "model": "lotus domino fix pack", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "8.5.35" }, { "model": "aura system platform sp2", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.6" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.6" }, { "model": "aura session manager sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2" }, { "model": "linux amd64", "scope": "eq", "trust": 0.3, "vendor": "ubuntu", "version": "12.10" }, { "model": "tivoli composite application manager for transactions", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1.0" }, { "model": "intelligent operations center", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "1.5.0.1" }, { "model": "business server", "scope": "eq", "trust": 0.3, "vendor": "mandriva", "version": "1" }, { "model": "tivoli endpoint manager for remote control", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.2.1" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.3" }, { "model": "ucosminexus operator", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "0" }, { "model": "voice portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.1.2" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.1.5" }, { "model": "linux i386", "scope": "eq", "trust": 0.3, "vendor": "ubuntu", "version": "12.10" }, { "model": "aura application server sip core", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "53002.0" }, { "model": "voice portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.0" }, { "model": "meeting exchange", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.3.0.3" }, { "model": "ip office application server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "8.0" }, { "model": "tivoli monitoring", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.1" }, { "model": "one-x client enablement service", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "websphere cast iron cloud integration physical applian", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.3" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.1" }, { "model": "one-x client enablement service sp3", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "tivoli composite application manager for transactions", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2.0" }, { "model": "cosminexus developer light", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "6" }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.4" }, { "model": "tivoli system automation for multiplatforms", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "3.2.2" }, { "model": "aura messaging", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.2" }, { "model": "tivoli system automation for integrated operations management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "2.1" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "cosminexus studio", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "4.0" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.5" }, { "model": "cosminexus", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "8.0" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.1" }, { "model": "websphere operational decision management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.5.0.0" }, { "model": "meeting exchange", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "rational host on-demand", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "11.0.7" }, { "model": "enterprise linux desktop", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.3" }, { "model": "enterprise linux desktop supplementary", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "aura messaging", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "message networking", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.3" }, { "model": "tivoli application dependency discovery manager", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "7.2.1.5" }, { "model": "ucosminexus developer", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "010" }, { "model": "enterprise linux supplementary server", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "5" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.0.1" }, { "model": "rational host on-demand", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "11.0.8" }, { "model": "ucosminexus service architect", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "0" }, { "model": "enterprise linux", "scope": "eq", "trust": 0.3, "vendor": "oracle", "version": "6.2" }, { "model": "voice portal sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.0" }, { "model": "voice portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.1" }, { "model": "jdk 1.5.0 11", "scope": null, "trust": 0.3, "vendor": "sun", "version": null }, { "model": "websphere cast iron cloud integration live saas offeri", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.3" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.2" }, { "model": "ucosminexus developer light", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "0" }, { "model": "smart analytics system", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "56009.7" }, { "model": "cosminexus server standard edition", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "4" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.4" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "9.0" }, { "model": "enterprise linux workstation", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "jdk 1.5.0.0 04", "scope": null, "trust": 0.3, "vendor": "sun", "version": null }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2.2" }, { "model": "enterprise linux desktop client", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "5" }, { "model": "aura messaging", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.1" }, { "model": "maximo asset management essentials", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.3" }, { "model": "aura session manager sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura communication manager utility services sp", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.16.1.0.9.8" }, { "model": "aura sip enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.1" }, { "model": "aura presence services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.2" }, { "model": "jdk 1.5.0.0 06", "scope": null, "trust": 0.3, "vendor": "sun", "version": null }, { "model": "aura presence services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.2" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.5" }, { "model": "tivoli monitoring", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.3" }, { "model": "aura communication manager utility services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2.4.0.15" }, { "model": "one-x client enablement service sp2", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.1" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0" }, { "model": "websphere ilog jrules", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1" }, { "model": "ucosminexus application server light", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "0" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.1" }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.2" }, { "model": "cosminexus application server standard", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "6" }, { "model": "tivoli monitoring", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2" }, { "model": "tivoli composite application manager for transactions", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2.0.1" }, { "model": "cms r17", "scope": null, "trust": 0.3, "vendor": "avaya", "version": null }, { "model": "tivoli application dependency discovery manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2.1.4" }, { "model": "websphere cast iron cloud integration virtual applianc", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.0" }, { "model": "cosminexus developer professional", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "6" }, { "model": "opensuse", "scope": "eq", "trust": 0.3, "vendor": "s u s e", "version": "12.2" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2" }, { "model": "jre 1.5.0 09", "scope": null, "trust": 0.3, "vendor": "sun", "version": null }, { "model": "one-x client enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.2" }, { "model": "tivoli composite application manager for transactions", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1.0.2" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.4" }, { "model": "one-x client enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "linux lts", "scope": "eq", "trust": 0.3, "vendor": "ubuntu", "version": "12.04" }, { "model": "aura sip enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.1" }, { "model": "hp-ux b.11.11", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "tivoli remote control", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "5.1.2" }, { "model": "websphere cast iron cloud integration virtual applianc", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.3" }, { "model": "websphere cast iron cloud integration physical applian", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.0" }, { "model": "jre beta", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.5.0" }, { "model": "aura communication manager utility services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2.5.0.15" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.1.1" }, { "model": "tivoli system automation application manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "3.2" }, { "model": "jdk", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.5" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura system manager sp2", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "cosminexus developer standard", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "6" }, { "model": "enterprise server x86 64", "scope": "eq", "trust": 0.3, "vendor": "mandrakesoft", "version": "5" }, { "model": "jdk 07", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.5" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.3" }, { "model": "aura session manager sp2", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2" }, { "model": "ip office server edition", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "8.1" }, { "model": "cosminexus application server enterprise", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "6" }, { "model": "cosminexus application server", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "5.0" }, { "model": "one-x client enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "ucosminexus developer professional for plug-in", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "0" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "1.0" }, { "model": "enterprise linux hpc node optional", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "intelligent operations center", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "1.5" }, { "model": "enterprise linux server supplementary", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.3.8.3" }, { "model": "tivoli endpoint manager for remote control", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "9.0" }, { "model": "tivoli monitoring", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.2" }, { "model": "enterprise linux", "scope": "eq", "trust": 0.3, "vendor": "oracle", "version": "5" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.2.3" }, { "model": "tivoli system automation for integrated operations management", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "2.1.1.4" }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.3" }, { "model": "enterprise server", "scope": "eq", "trust": 0.3, "vendor": "mandrakesoft", "version": "5" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.3.9.3" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.3" }, { "model": "jdk 1.5.0 11-b03", "scope": null, "trust": 0.3, "vendor": "sun", "version": null }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.2" }, { "model": "virtualization engine ts7700", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "0" }, { "model": "tivoli system automation for multiplatforms", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "3.1" }, { "model": "meeting exchange", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2" }, { "model": "aura communication manager utility services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.5" }, { "model": "business server", "scope": "eq", "trust": 0.3, "vendor": "mandriva", "version": "1x8664" }, { "model": "websphere message broker", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.0.0" }, { "model": "tivoli system automation application manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "3.1" }, { "model": "communication server 1000m", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.3" }, { "model": "enterprise linux workstation supplementary", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux workstation optional", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "message networking", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.2" }, { "model": "websphere cast iron cloud integration live saas offeri", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.1" }, { "model": "communication server 1000m signaling server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5" }, { "model": "aura messaging", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.1" }, { "model": "communication server 1000e", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "operational decision manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5" }, { "model": "message networking", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.1" }, { "model": "tivoli monitoring", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.3" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.2.2" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.2.1" }, { "model": "cosminexus studio", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "5" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.1" }, { "model": "websphere message broker", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.1" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1.1" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2.1" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1" }, { "model": "aura experience portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.2" }, { "model": "enterprise linux", "scope": "eq", "trust": 0.3, "vendor": "oracle", "version": "6" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2" }, { "model": "maximo asset management essentials", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.5" }, { "model": "cosminexus", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "7.0" }, { "model": "websphere message broker", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "1.1" }, { "model": "java jre/jdk for hp-ux", "scope": "eq", "trust": 0.3, "vendor": "hp", "version": "1.6.0.18" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2" }, { "model": "ucosminexus developer professional", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "0" }, { "model": "aura presence services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura experience portal sp2", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "ucosminexus developer standard", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "0" }, { "model": "cosminexus", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "9.0" }, { "model": "aura presence services sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura system manager sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "tivoli system automation application manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "3.2.1" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.8" }, { "model": "aura system manager sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "hp-ux b.11.31", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.1" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.2" }, { "model": "cosminexus client", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "0" }, { "model": "communication server 1000m signaling server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.0" }, { "model": "aura experience portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.4" }, { "model": "communication server 1000e", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.0" }, { "model": "jre 07", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.5" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2.2" }, { "model": "aura session manager sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "tivoli application dependency discovery manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2.13" }, { "model": "jdk 0 09", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.5" }, { "model": "tivoli provisioning manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "5.1.1" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.5" }, { "model": "jre 1.5.0 08", "scope": null, "trust": 0.3, "vendor": "sun", "version": null }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.1.4" }, { "model": "websphere cast iron cloud integration studio", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.0" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.7" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.2" }, { "model": "ucosminexus application server smart edition", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "0" }, { "model": "aura session manager sp2", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura conferencing", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.1" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2.1" }, { "model": "tivoli system automation for multiplatforms", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "3.2" }, { "model": "aura presence services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.1" }, { "model": "centos", "scope": "eq", "trust": 0.3, "vendor": "centos", "version": "5" }, { "model": "proactive contact", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.0" }, { "model": "ip office application server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "8.1" }, { "model": "messaging application server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.1" }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2" }, { "model": "enterprise linux server optional", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.1.2" }, { "model": "websphere cast iron cloud integration physical applian", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.1" }, { "model": "websphere cast iron cloud integration studio", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.3" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.1.3" }, { "model": "aura conferencing sp1 standard", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "linux lts", "scope": "eq", "trust": 0.3, "vendor": "ubuntu", "version": "10.04" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.2" }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.1" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.0.1" }, { "model": "one-x client enablement service sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura session manager sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.3" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2.1.0.9" }, { "model": "tivoli provisioning manager for software", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "5.1" }, { "model": "aura application server sip core", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "53003.0" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.4" }, { "model": "jdk 1.5.0 07-b03", "scope": null, "trust": 0.3, "vendor": "sun", "version": null }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "9.0" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0" }, { "model": "voice portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.1.1" }, { "model": "aura experience portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.1" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.1" }, { "model": "aura experience portal sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "message networking", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.5" }, { "model": "one-x client enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.1" }, { "model": "operational decision manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0" }, { "model": "communication server 1000e signaling server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1.2" }, { "model": "cms r16", "scope": null, "trust": 0.3, "vendor": "avaya", "version": null }, { "model": "aura messaging", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura system manager sp3", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "aura system platform sp3", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "tivoli application dependency discovery manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2" }, { "model": "ucosminexus service platform", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "0" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.5" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "jdk 1.6.0 01-b06", "scope": null, "trust": 0.3, "vendor": "sun", "version": null }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.2" }, { "model": "aura conferencing", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.0" }, { "model": "ucosminexus client", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "0" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "aura system platform sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "centos", "scope": "eq", "trust": 0.3, "vendor": "centos", "version": "6" }, { "model": "tivoli system automation application manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "3.2.2" }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.1" }, { "model": "enterprise linux desktop optional", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "aura communication manager utility services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "proactive contact", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.1" }, { "model": "tivoli provisioning manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "5.1.1.1" }, { "model": "tivoli composite application manager for transactions", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.3.0" }, { "model": "enterprise linux hpc node supplementary", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux desktop supplementary client", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "5" }, { "model": "ucosminexus application server standard-r", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "0" }, { "model": "linux", "scope": null, "trust": 0.3, "vendor": "gentoo", "version": null }, { "model": "enterprise linux hpc node", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2" }, { "model": "jdk 1.5.0.0 03", "scope": null, "trust": 0.3, "vendor": "sun", "version": null }, { "model": "message networking", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.4" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.1" }, { "model": "communication server 1000e signaling server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.5" }, { "model": "aura communication manager utility services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.0.9.8" }, { "model": "enterprise linux server", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "5" }, { "model": "voice portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.1.3" }, { "model": "aura communication manager utility services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.3" }, { "model": "tivoli composite application manager for transactions", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2.0.2" }, { "model": "rational host on-demand", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "11.0" }, { "model": "tivoli provisioning manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1.1" }, { "model": "linux enterprise desktop sp2", "scope": "eq", "trust": 0.3, "vendor": "suse", "version": "11" }, { "model": "tivoli provisioning manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1" }, { "model": "jdk 0 03", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.5" }, { "model": "tivoli application dependency discovery manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2.1" }, { "model": "communication server 1000m", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.5" }, { "model": "communication server 1000e signaling server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.0" }, { "model": "aura communication manager utility services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "tivoli application dependency discovery manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2.12" }, { "model": "aura conferencing standard", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "java jre/jdk for hp-ux", "scope": "ne", "trust": 0.3, "vendor": "hp", "version": "1.6.0.19.00" }, { "model": "tivoli provisioning manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2" }, { "model": "communication server 1000m signaling server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.5" }, { "model": "communication server 1000e", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.5" }, { "model": "tivoli system automation for multiplatforms", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "3.2.1" }, { "model": "communication server 1000m", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.0" } ], "sources": [ { "db": "BID", "id": "59141" }, { "db": "CNNVD", "id": "CNNVD-201304-358" }, { "db": "NVD", "id": "CVE-2013-1518" } ] }, "configurations": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", "children": { "@container": "@list" }, "cpe_match": { "@container": "@list" }, "data": { "@container": "@list" }, "nodes": { "@container": "@list" } }, "data": [ { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:*:update17:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.7.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:*:update17:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.7.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update32:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update33:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update39:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update35:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update30:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:*:update43:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.6.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update34:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update41:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update37:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update38:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update32:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update33:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update38:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update30:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:*:update43:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.6.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update34:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update39:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update41:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update37:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update35:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update8:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update28:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update33:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.5.0:update38:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.5.0:update36:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.5.0:update40:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:*:update41:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.5.0", "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update33:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update7_b03:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update28:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update11_b03:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.5.0:update40:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:*:update41:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.5.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.5.0:update36:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update8:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.5.0:update38:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] } ], "sources": [ { "db": "NVD", "id": "CVE-2013-1518" } ] }, "credits": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Oracle", "sources": [ { "db": "BID", "id": "59141" } ], "trust": 0.3 }, "cve": "CVE-2013-1518", "cvss": { "@context": { "cvssV2": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2" }, "cvssV3": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/" }, "severity": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#" }, "@id": "https://www.variotdbs.pl/ref/cvss/severity" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "cvssV2": [ { "acInsufInfo": false, "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "author": "NVD", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "exploitabilityScore": 10.0, "impactScore": 10.0, "integrityImpact": "COMPLETE", "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "trust": 1.0, "userInteractionRequired": false, "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, { "acInsufInfo": null, "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "author": "VULMON", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "exploitabilityScore": 10.0, "id": "CVE-2013-1518", "impactScore": 10.0, "integrityImpact": "COMPLETE", "obtainAllPrivilege": null, "obtainOtherPrivilege": null, "obtainUserPrivilege": null, "severity": "HIGH", "trust": 0.1, "userInteractionRequired": null, "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" } ], "cvssV3": [], "severity": [ { "author": "NVD", "id": "CVE-2013-1518", "trust": 1.0, "value": "HIGH" }, { "author": "CNNVD", "id": "CNNVD-201304-358", "trust": 0.6, "value": "CRITICAL" }, { "author": "VULMON", "id": "CVE-2013-1518", "trust": 0.1, "value": "HIGH" } ] } ], "sources": [ { "db": "VULMON", "id": "CVE-2013-1518" }, { "db": "CNNVD", "id": "CNNVD-201304-358" }, { "db": "NVD", "id": "CVE-2013-1518" } ] }, "description": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions.\". Oracle Java SE is prone to a remote vulnerability in Java Runtime Environment. \nThe vulnerability can be exploited over multiple protocols. This issue affects the \u0027JAXP\u0027 sub-component. \nThis vulnerability affects the following supported versions:\n7 Update 17 , 6 Update 43 , 5.0 Update 41. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nNote: the current version of the following document is available here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c03809278\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c03809278\nVersion: 1\n\nHPSBUX02889 SSRT101252 rev.1 - HP-UX Running Java, Remote Unauthorized\nAccess, Disclosure of Information, and Other Vulnerabilities\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2013-07-01\nLast Updated: 2013-07-01\n\nPotential Security Impact: Remote unauthorized access, disclosure of\ninformation, and other vulnerabilities\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nPotential security vulnerabilities have been identified in the Java Runtime\nEnvironment (JRE) and the Java Developer Kit (JDK) running on HP-UX. These\nvulnerabilities could allow remote unauthorized access, disclosure of\ninformation, and other exploits. \nHP-UX B.11.11, B.11.23, and B.11.31 running HP JDK and JRE v6.0.18 and\nearlier. \n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n Reference Base Vector Base Score\nCVE-2013-0401 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1491 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1518 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1537 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1540 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3\nCVE-2013-1557 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1558 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-1563 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6\nCVE-2013-1569 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2383 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2384 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2394 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6\nCVE-2013-2417 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0\nCVE-2013-2418 (AV:L/AC:L/Au:N/C:P/I:P/A:P) 4.6\nCVE-2013-2419 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0\nCVE-2013-2420 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2422 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2424 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0\nCVE-2013-2429 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6\nCVE-2013-2430 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6\nCVE-2013-2432 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2433 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3\nCVE-2013-2434 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2435 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2439 (AV:L/AC:M/Au:N/C:C/I:C/A:C) 6.9\nCVE-2013-2440 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\n===========================================================\n Information on CVSS is documented\n in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has provided the following Java version upgrade to resolve these\nvulnerabilities. \nThe upgrade is available from the following location\n\nhttp://www.hp.com/java\n\nOS Version\n Release Version\n\nHP-UX B.11.11, B.11.23, B.11.31\n JDK and JRE v6.0.19 or subsequent\n\nMANUAL ACTIONS: Yes - Update\nFor Java v6.0 update to Java v6.0.19 or subsequent\n\nPRODUCT SPECIFIC INFORMATION\n\nHP-UX Software Assistant: HP-UX Software Assistant is an enhanced application\nthat replaces HP-UX Security Patch Check. It analyzes all Security Bulletins\nissued by HP and lists recommended actions that may apply to a specific HP-UX\nsystem. It can also download patches and create a depot automatically. For\nmore information see https://www.hp.com/go/swa\n\nThe following text is for use by the HP-UX Software Assistant. \n\nAFFECTED VERSIONS\n\nHP-UX B.11.11\nHP-UX B.11.23\n===========\nJdk60.JDK60-COM\nJdk60.JDK60-PA20\nJdk60.JDK60-PA20W\nJre60.JRE60-COM\nJre60.JRE60-COM-DOC\nJre60.JRE60-PA20\nJre60.JRE60-PA20-HS\nJre60.JRE60-PA20W\nJre60.JRE60-PA20W-HS\nJdk60.JDK60-IPF32\nJdk60.JDK60-IPF64\nJre60.JRE60-COM\nJre60.JRE60-IPF32\nJre60.JRE60-IPF32-HS\nJre60.JRE60-IPF64\nJre60.JRE60-IPF64-HS\naction: install revision 1.6.0.19.00 or subsequent\n\nHP-UX B.11.23\nHP-UX B.11.31\n===========\nJdk60.JDK60-COM\nJdk60.JDK60-IPF32\nJdk60.JDK60-IPF64\nJre60.JRE60-IPF32\nJre60.JRE60-IPF32-HS\nJre60.JRE60-IPF64\nJre60.JRE60-IPF64-HS\nJre60.JRE60-COM\nJre60.JRE60-IPF32\nJre60.JRE60-IPF32-HS\nJre60.JRE60-IPF64\nJre60.JRE60-IPF64-HS\naction: install revision 1.6.0.19.00 or subsequent\n\nEND AFFECTED VERSIONS\n\nHISTORY\n\nVersion:1 (rev.1) - 1 July 2013 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel. For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2013 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits;damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners. \n==========================================================================\nUbuntu Security Notice USN-1806-1\nApril 23, 2013\n\nopenjdk-7 vulnerabilities\n==========================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 12.10\n\nSummary:\n\nSeveral security issues were fixed in OpenJDK 7. (CVE-2013-0401)\n\nJames Forshaw discovered a vulnerability in the OpenJDK JRE related to\ninformation disclosure, data integrity and availability. An attacker could\nexploit these to cause a denial of service or expose sensitive data over\nthe network. (CVE-2013-1518, CVE-2013-1537, CVE-2013-1557, CVE-2013-1569,\nCVE-2013-2383, CVE-2013-2384, CVE-2013-2420, CVE-2013-2421, CVE-2013-2422,\nCVE-2013-2426, CVE-2013-2429, CVE-2013-2430, CVE-2013-2431, CVE-2013-2436)\n\nTwo vulnerabilities were discovered in the OpenJDK JRE related to\nconfidentiality. An attacker could exploit these to expose sensitive data\nover the network. (CVE-2013-2415, CVE-2013-2424)\n\nTwo vulnerabilities were discovered in the OpenJDK JRE related to\navailability. An attacker could exploit these to cause a denial of service. \n(CVE-2013-2417, CVE-2013-2419)\n\nA vulnerability was discovered in the OpenJDK JRE related to data\nintegrity. (CVE-2013-2423)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 12.10:\n icedtea-7-jre-jamvm 7u21-2.3.9-0ubuntu0.12.10.1\n openjdk-7-jre 7u21-2.3.9-0ubuntu0.12.10.1\n openjdk-7-jre-headless 7u21-2.3.9-0ubuntu0.12.10.1\n openjdk-7-jre-lib 7u21-2.3.9-0ubuntu0.12.10.1\n openjdk-7-jre-zero 7u21-2.3.9-0ubuntu0.12.10.1\n\nThis update uses a new upstream release, which includes additional bug\nfixes. \n\nBackground\n==========\n\nIcedTea is a distribution of the Java OpenJDK source code built with\nfree build tools. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n Red Hat Security Advisory\n\nSynopsis: Important: java-1.7.0-openjdk security update\nAdvisory ID: RHSA-2013:0752-01\nProduct: Red Hat Enterprise Linux\nAdvisory URL: https://rhn.redhat.com/errata/RHSA-2013-0752.html\nIssue date: 2013-04-17\nCVE Names: CVE-2013-0401 CVE-2013-1488 CVE-2013-1518 \n CVE-2013-1537 CVE-2013-1557 CVE-2013-1558 \n CVE-2013-1569 CVE-2013-2383 CVE-2013-2384 \n CVE-2013-2415 CVE-2013-2417 CVE-2013-2419 \n CVE-2013-2420 CVE-2013-2421 CVE-2013-2422 \n CVE-2013-2423 CVE-2013-2424 CVE-2013-2426 \n CVE-2013-2429 CVE-2013-2430 CVE-2013-2431 \n CVE-2013-2436 \n=====================================================================\n\n1. Summary:\n\nUpdated java-1.7.0-openjdk packages that fix various security issues are\nnow available for Red Hat Enterprise Linux 5. \n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux (v. 5 server) - i386, x86_64\nRed Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64\n\n3. Description:\n\nThese packages provide the OpenJDK 7 Java Runtime Environment and the\nOpenJDK 7 Software Development Kit. \n\nMultiple flaws were discovered in the font layout engine in the 2D\ncomponent. An untrusted Java application or applet could possibly use these\nflaws to trigger Java Virtual Machine memory corruption. (CVE-2013-1569,\nCVE-2013-2383, CVE-2013-2384)\n\nMultiple improper permission check issues were discovered in the Beans,\nLibraries, JAXP, and RMI components in OpenJDK. An untrusted Java\napplication or applet could use these flaws to bypass Java sandbox\nrestrictions. (CVE-2013-1558, CVE-2013-2422, CVE-2013-2436, CVE-2013-1518,\nCVE-2013-1557)\n\nThe previous default value of the java.rmi.server.useCodebaseOnly property\npermitted the RMI implementation to automatically load classes from\nremotely specified locations. An attacker able to connect to an application\nusing RMI could use this flaw to make the application execute arbitrary\ncode. (CVE-2013-1537)\n\nNote: The fix for CVE-2013-1537 changes the default value of the property\nto true, restricting class loading to the local CLASSPATH and locations\nspecified in the java.rmi.server.codebase property. Refer to Red Hat\nBugzilla bug 952387 for additional details. \n\nThe 2D component did not properly process certain images. An untrusted Java\napplication or applet could possibly use this flaw to trigger Java Virtual\nMachine memory corruption. (CVE-2013-2420)\n\nIt was discovered that the Hotspot component did not properly handle\ncertain intrinsic frames, and did not correctly perform access checks and\nMethodHandle lookups. An untrusted Java application or applet could\nuse these flaws to bypass Java sandbox restrictions. (CVE-2013-2431,\nCVE-2013-2421, CVE-2013-2423)\n\nIt was discovered that JPEGImageReader and JPEGImageWriter in the ImageIO\ncomponent did not protect against modification of their state while\nperforming certain native code operations. An untrusted Java application or\napplet could possibly use these flaws to trigger Java Virtual Machine\nmemory corruption. (CVE-2013-2429, CVE-2013-2430)\n\nThe JDBC driver manager could incorrectly call the toString() method in\nJDBC drivers, and the ConcurrentHashMap class could incorrectly call the\ndefaultReadObject() method. An untrusted Java application or applet could\npossibly use these flaws to bypass Java sandbox restrictions. \n(CVE-2013-1488, CVE-2013-2426)\n\nThe sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly\ninvoke the system class loader. An untrusted Java application or applet\ncould possibly use this flaw to bypass certain Java sandbox restrictions. \n(CVE-2013-0401)\n\nFlaws were discovered in the Network component\u0027s InetAddress serialization,\nand the 2D component\u0027s font handling. An untrusted Java application or\napplet could possibly use these flaws to crash the Java Virtual Machine. \n(CVE-2013-2417, CVE-2013-2419)\n\nThe MBeanInstantiator class implementation in the OpenJDK JMX component did\nnot properly check class access before creating new instances. An untrusted\nJava application or applet could use this flaw to create instances of\nnon-public classes. (CVE-2013-2424)\n\nIt was discovered that JAX-WS could possibly create temporary files with\ninsecure permissions. A local attacker could use this flaw to access\ntemporary files created by an application using JAX-WS. (CVE-2013-2415)\n\nThis erratum also upgrades the OpenJDK package to IcedTea7 2.3.9. Refer to\nthe NEWS file, linked to in the References, for further information. \n\nAll users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect. \n\n4. Solution:\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied. \n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258\n\n5. Bugs fixed (http://bugzilla.redhat.com/):\n\n920245 - CVE-2013-0401 OpenJDK: unspecified sandbox bypass (CanSecWest 2013, AWT)\n920247 - CVE-2013-1488 OpenJDK: unspecified sanbox bypass (CanSecWest 2013, Libraries)\n952387 - CVE-2013-1537 OpenJDK: remote code loading enabled by default (RMI, 8001040)\n952389 - CVE-2013-2415 OpenJDK: temporary files created with insecure permissions (JAX-WS, 8003542)\n952398 - CVE-2013-2423 OpenJDK: incorrect setter access checks in MethodHandles (Hostspot, 8009677)\n952509 - CVE-2013-2424 OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435)\n952521 - CVE-2013-2429 OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918)\n952524 - CVE-2013-2430 OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667)\n952550 - CVE-2013-2436 OpenJDK: Wrapper.convert insufficient type checks (Libraries, 8009049)\n952638 - CVE-2013-2420 OpenJDK: image processing vulnerability (2D, 8007617)\n952640 - CVE-2013-1558 OpenJDK: java.beans.ThreadGroupContext missing restrictions (Beans, 7200507)\n952642 - CVE-2013-2422 OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857)\n952645 - CVE-2013-2431 OpenJDK: Hotspot intrinsic frames vulnerability (Hotspot, 8004336)\n952646 - CVE-2013-1518 OpenJDK: JAXP missing security restrictions (JAXP, 6657673)\n952648 - CVE-2013-1557 OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)\n952649 - CVE-2013-2421 OpenJDK: Hotspot MethodHandle lookup error (Hotspot, 8009699)\n952653 - CVE-2013-2426 OpenJDK: ConcurrentHashMap incorrectly calls defaultReadObject() method (Libraries, 8009063)\n952656 - CVE-2013-2419 OpenJDK: font processing errors (2D, 8001031)\n952657 - CVE-2013-2417 OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)\n952708 - CVE-2013-2383 OpenJDK: font layout and glyph table errors (2D, 8004986)\n952709 - CVE-2013-2384 OpenJDK: font layout and glyph table errors (2D, 8004987)\n952711 - CVE-2013-1569 OpenJDK: font layout and glyph table errors (2D, 8004994)\n\n6. Package List:\n\nRed Hat Enterprise Linux Desktop (v. 5 client):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Client/en/os/SRPMS/java-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.src.rpm\n\ni386:\njava-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.i386.rpm\njava-1.7.0-openjdk-debuginfo-1.7.0.19-2.3.9.1.el5_9.i386.rpm\njava-1.7.0-openjdk-demo-1.7.0.19-2.3.9.1.el5_9.i386.rpm\njava-1.7.0-openjdk-devel-1.7.0.19-2.3.9.1.el5_9.i386.rpm\njava-1.7.0-openjdk-javadoc-1.7.0.19-2.3.9.1.el5_9.i386.rpm\njava-1.7.0-openjdk-src-1.7.0.19-2.3.9.1.el5_9.i386.rpm\n\nx86_64:\njava-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm\njava-1.7.0-openjdk-debuginfo-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm\njava-1.7.0-openjdk-demo-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm\njava-1.7.0-openjdk-devel-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm\njava-1.7.0-openjdk-javadoc-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm\njava-1.7.0-openjdk-src-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm\n\nRed Hat Enterprise Linux (v. 5 server):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/os/SRPMS/java-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.src.rpm\n\ni386:\njava-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.i386.rpm\njava-1.7.0-openjdk-debuginfo-1.7.0.19-2.3.9.1.el5_9.i386.rpm\njava-1.7.0-openjdk-demo-1.7.0.19-2.3.9.1.el5_9.i386.rpm\njava-1.7.0-openjdk-devel-1.7.0.19-2.3.9.1.el5_9.i386.rpm\njava-1.7.0-openjdk-javadoc-1.7.0.19-2.3.9.1.el5_9.i386.rpm\njava-1.7.0-openjdk-src-1.7.0.19-2.3.9.1.el5_9.i386.rpm\n\nx86_64:\njava-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm\njava-1.7.0-openjdk-debuginfo-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm\njava-1.7.0-openjdk-demo-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm\njava-1.7.0-openjdk-devel-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm\njava-1.7.0-openjdk-javadoc-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm\njava-1.7.0-openjdk-src-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security. Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/#package\n\n7. References:\n\nhttps://www.redhat.com/security/data/cve/CVE-2013-0401.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-1488.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-1518.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-1537.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-1557.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-1558.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-1569.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2383.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2384.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2415.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2417.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2419.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2420.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2421.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2422.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2423.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2424.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2426.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2429.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2430.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2431.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2436.html\nhttps://access.redhat.com/security/updates/classification/#important\nhttp://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.9/NEWS\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2013 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.4 (GNU/Linux)\n\niD8DBQFRbvJKXlSAg2UNWIIRAqUrAJ9Z/4p4Hfhem2IW/HyrENsM6alnkACeJrNj\nu7V5CaCh5MYZ84AllqEIm+E=\n=pvGZ\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory GLSA 201401-30\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n http://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n Severity: High\n Title: Oracle JRE/JDK: Multiple vulnerabilities\n Date: January 27, 2014\n Bugs: #404071, #421073, #433094, #438706, #451206, #455174,\n #458444, #460360, #466212, #473830, #473980, #488210, #498148\n ID: 201401-30\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nMultiple vulnerabilities have been found in the Oracle JRE/JDK,\nallowing attackers to cause unspecified impact. \n\nBackground\n==========\n\nThe Oracle Java Development Kit (JDK) (formerly known as Sun JDK) and\nthe Oracle Java Runtime Environment (JRE) (formerly known as Sun JRE)\nprovide the Oracle Java platform (formerly known as Sun Java Platform). Users should migrate\n to another package if one is available or wait for the\n existing packages to be marked stable by their\n architecture maintainers. \n -------------------------------------------------------------------\n NOTE: Packages marked with asterisks require manual intervention!\n -------------------------------------------------------------------\n 5 affected packages\n\nDescription\n===========\n\nMultiple vulnerabilities have been reported in the Oracle Java\nimplementation. Please review the CVE identifiers referenced below for\ndetails. \nFurthermore, a local or remote attacker could exploit these\nvulnerabilities to cause unspecified impact, possibly including remote\nexecution of arbitrary code. \n\nWorkaround\n==========\n\nThere is no known workaround at this time. \n\nResolution\n==========\n\nAll Oracle JDK 1.7 users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot -v \"\u003e=dev-java/oracle-jdk-bin-1.7.0.51\"\n\nAll Oracle JRE 1.7 users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot -v \"\u003e=dev-java/oracle-jre-bin-1.7.0.51\"\n\nAll users of the precompiled 32-bit Oracle JRE should upgrade to the\nlatest version:\n\n # emerge --sync\n # emerge -a -1 -v \"\u003e=app-emulation/emul-linux-x86-java-1.7.0.51\"\n\nAll Sun Microsystems JDK/JRE 1.6 users are suggested to upgrade to one\nof the newer Oracle packages like dev-java/oracle-jdk-bin or\ndev-java/oracle-jre-bin or choose another alternative we provide; eg. \nthe IBM JDK/JRE or the open source IcedTea. \n\nReferences\n==========\n\n[ 1 ] CVE-2011-3563\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3563\n[ 2 ] CVE-2011-5035\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-5035\n[ 3 ] CVE-2012-0497\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0497\n[ 4 ] CVE-2012-0498\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0498\n[ 5 ] CVE-2012-0499\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0499\n[ 6 ] CVE-2012-0500\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0500\n[ 7 ] CVE-2012-0501\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0501\n[ 8 ] CVE-2012-0502\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0502\n[ 9 ] CVE-2012-0503\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0503\n[ 10 ] CVE-2012-0504\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0504\n[ 11 ] CVE-2012-0505\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0505\n[ 12 ] CVE-2012-0506\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0506\n[ 13 ] CVE-2012-0507\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0507\n[ 14 ] CVE-2012-0547\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0547\n[ 15 ] CVE-2012-1531\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1531\n[ 16 ] CVE-2012-1532\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1532\n[ 17 ] CVE-2012-1533\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1533\n[ 18 ] CVE-2012-1541\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1541\n[ 19 ] CVE-2012-1682\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1682\n[ 20 ] CVE-2012-1711\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1711\n[ 21 ] CVE-2012-1713\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1713\n[ 22 ] CVE-2012-1716\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1716\n[ 23 ] CVE-2012-1717\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1717\n[ 24 ] CVE-2012-1718\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1718\n[ 25 ] CVE-2012-1719\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1719\n[ 26 ] CVE-2012-1721\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1721\n[ 27 ] CVE-2012-1722\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1722\n[ 28 ] CVE-2012-1723\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1723\n[ 29 ] CVE-2012-1724\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1724\n[ 30 ] CVE-2012-1725\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1725\n[ 31 ] CVE-2012-1726\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1726\n[ 32 ] CVE-2012-3136\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3136\n[ 33 ] CVE-2012-3143\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3143\n[ 34 ] CVE-2012-3159\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3159\n[ 35 ] CVE-2012-3174\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3174\n[ 36 ] CVE-2012-3213\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3213\n[ 37 ] CVE-2012-3216\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3216\n[ 38 ] CVE-2012-3342\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3342\n[ 39 ] CVE-2012-4416\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4416\n[ 40 ] CVE-2012-4681\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4681\n[ 41 ] CVE-2012-5067\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5067\n[ 42 ] CVE-2012-5068\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5068\n[ 43 ] CVE-2012-5069\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5069\n[ 44 ] CVE-2012-5070\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5070\n[ 45 ] CVE-2012-5071\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5071\n[ 46 ] CVE-2012-5072\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5072\n[ 47 ] CVE-2012-5073\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5073\n[ 48 ] CVE-2012-5074\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5074\n[ 49 ] CVE-2012-5075\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5075\n[ 50 ] CVE-2012-5076\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5076\n[ 51 ] CVE-2012-5077\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5077\n[ 52 ] CVE-2012-5079\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5079\n[ 53 ] CVE-2012-5081\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5081\n[ 54 ] CVE-2012-5083\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5083\n[ 55 ] CVE-2012-5084\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5084\n[ 56 ] CVE-2012-5085\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5085\n[ 57 ] CVE-2012-5086\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5086\n[ 58 ] CVE-2012-5087\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5087\n[ 59 ] CVE-2012-5088\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5088\n[ 60 ] CVE-2012-5089\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5089\n[ 61 ] CVE-2013-0169\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0169\n[ 62 ] CVE-2013-0351\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0351\n[ 63 ] CVE-2013-0401\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0401\n[ 64 ] CVE-2013-0402\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0402\n[ 65 ] CVE-2013-0409\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0409\n[ 66 ] CVE-2013-0419\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0419\n[ 67 ] CVE-2013-0422\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0422\n[ 68 ] CVE-2013-0423\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0423\n[ 69 ] CVE-2013-0430\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0430\n[ 70 ] CVE-2013-0437\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0437\n[ 71 ] CVE-2013-0438\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0438\n[ 72 ] CVE-2013-0445\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0445\n[ 73 ] CVE-2013-0446\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0446\n[ 74 ] CVE-2013-0448\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0448\n[ 75 ] CVE-2013-0449\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0449\n[ 76 ] CVE-2013-0809\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0809\n[ 77 ] CVE-2013-1473\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1473\n[ 78 ] CVE-2013-1479\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1479\n[ 79 ] CVE-2013-1481\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1481\n[ 80 ] CVE-2013-1484\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1484\n[ 81 ] CVE-2013-1485\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1485\n[ 82 ] CVE-2013-1486\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1486\n[ 83 ] CVE-2013-1487\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1487\n[ 84 ] CVE-2013-1488\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1488\n[ 85 ] CVE-2013-1491\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1491\n[ 86 ] CVE-2013-1493\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1493\n[ 87 ] CVE-2013-1500\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1500\n[ 88 ] CVE-2013-1518\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1518\n[ 89 ] CVE-2013-1537\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1537\n[ 90 ] CVE-2013-1540\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1540\n[ 91 ] CVE-2013-1557\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1557\n[ 92 ] CVE-2013-1558\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1558\n[ 93 ] CVE-2013-1561\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1561\n[ 94 ] CVE-2013-1563\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1563\n[ 95 ] CVE-2013-1564\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1564\n[ 96 ] CVE-2013-1569\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1569\n[ 97 ] CVE-2013-1571\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1571\n[ 98 ] CVE-2013-2383\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2383\n[ 99 ] CVE-2013-2384\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2384\n[ 100 ] CVE-2013-2394\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2394\n[ 101 ] CVE-2013-2400\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2400\n[ 102 ] CVE-2013-2407\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2407\n[ 103 ] CVE-2013-2412\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2412\n[ 104 ] CVE-2013-2414\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2414\n[ 105 ] CVE-2013-2415\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2415\n[ 106 ] CVE-2013-2416\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2416\n[ 107 ] CVE-2013-2417\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2417\n[ 108 ] CVE-2013-2418\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2418\n[ 109 ] CVE-2013-2419\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2419\n[ 110 ] CVE-2013-2420\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2420\n[ 111 ] CVE-2013-2421\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2421\n[ 112 ] CVE-2013-2422\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2422\n[ 113 ] CVE-2013-2423\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2423\n[ 114 ] CVE-2013-2424\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2424\n[ 115 ] CVE-2013-2425\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2425\n[ 116 ] CVE-2013-2426\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2426\n[ 117 ] CVE-2013-2427\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2427\n[ 118 ] CVE-2013-2428\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2428\n[ 119 ] CVE-2013-2429\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2429\n[ 120 ] CVE-2013-2430\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2430\n[ 121 ] CVE-2013-2431\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2431\n[ 122 ] CVE-2013-2432\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2432\n[ 123 ] CVE-2013-2433\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2433\n[ 124 ] CVE-2013-2434\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2434\n[ 125 ] CVE-2013-2435\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2435\n[ 126 ] CVE-2013-2436\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2436\n[ 127 ] CVE-2013-2437\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2437\n[ 128 ] CVE-2013-2438\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2438\n[ 129 ] CVE-2013-2439\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2439\n[ 130 ] CVE-2013-2440\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2440\n[ 131 ] CVE-2013-2442\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2442\n[ 132 ] CVE-2013-2443\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2443\n[ 133 ] CVE-2013-2444\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2444\n[ 134 ] CVE-2013-2445\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2445\n[ 135 ] CVE-2013-2446\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2446\n[ 136 ] CVE-2013-2447\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2447\n[ 137 ] CVE-2013-2448\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2448\n[ 138 ] CVE-2013-2449\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2449\n[ 139 ] CVE-2013-2450\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2450\n[ 140 ] CVE-2013-2451\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2451\n[ 141 ] CVE-2013-2452\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2452\n[ 142 ] CVE-2013-2453\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2453\n[ 143 ] CVE-2013-2454\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2454\n[ 144 ] CVE-2013-2455\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2455\n[ 145 ] CVE-2013-2456\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2456\n[ 146 ] CVE-2013-2457\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2457\n[ 147 ] CVE-2013-2458\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2458\n[ 148 ] CVE-2013-2459\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2459\n[ 149 ] CVE-2013-2460\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2460\n[ 150 ] CVE-2013-2461\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2461\n[ 151 ] CVE-2013-2462\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2462\n[ 152 ] CVE-2013-2463\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2463\n[ 153 ] CVE-2013-2464\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2464\n[ 154 ] CVE-2013-2465\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2465\n[ 155 ] CVE-2013-2466\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2466\n[ 156 ] CVE-2013-2467\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2467\n[ 157 ] CVE-2013-2468\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2468\n[ 158 ] CVE-2013-2469\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2469\n[ 159 ] CVE-2013-2470\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2470\n[ 160 ] CVE-2013-2471\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2471\n[ 161 ] CVE-2013-2472\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2472\n[ 162 ] CVE-2013-2473\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2473\n[ 163 ] CVE-2013-3743\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3743\n[ 164 ] CVE-2013-3744\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3744\n[ 165 ] CVE-2013-3829\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3829\n[ 166 ] CVE-2013-5772\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5772\n[ 167 ] CVE-2013-5774\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5774\n[ 168 ] CVE-2013-5775\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5775\n[ 169 ] CVE-2013-5776\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5776\n[ 170 ] CVE-2013-5777\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5777\n[ 171 ] CVE-2013-5778\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5778\n[ 172 ] CVE-2013-5780\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5780\n[ 173 ] CVE-2013-5782\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5782\n[ 174 ] CVE-2013-5783\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5783\n[ 175 ] CVE-2013-5784\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5784\n[ 176 ] CVE-2013-5787\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5787\n[ 177 ] CVE-2013-5788\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5788\n[ 178 ] CVE-2013-5789\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5789\n[ 179 ] CVE-2013-5790\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5790\n[ 180 ] CVE-2013-5797\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5797\n[ 181 ] CVE-2013-5800\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5800\n[ 182 ] CVE-2013-5801\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5801\n[ 183 ] CVE-2013-5802\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5802\n[ 184 ] CVE-2013-5803\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5803\n[ 185 ] CVE-2013-5804\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5804\n[ 186 ] CVE-2013-5805\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5805\n[ 187 ] CVE-2013-5806\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5806\n[ 188 ] CVE-2013-5809\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5809\n[ 189 ] CVE-2013-5810\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5810\n[ 190 ] CVE-2013-5812\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5812\n[ 191 ] CVE-2013-5814\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5814\n[ 192 ] CVE-2013-5817\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5817\n[ 193 ] CVE-2013-5818\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5818\n[ 194 ] CVE-2013-5819\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5819\n[ 195 ] CVE-2013-5820\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5820\n[ 196 ] CVE-2013-5823\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5823\n[ 197 ] CVE-2013-5824\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5824\n[ 198 ] CVE-2013-5825\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5825\n[ 199 ] CVE-2013-5829\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5829\n[ 200 ] CVE-2013-5830\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5830\n[ 201 ] CVE-2013-5831\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5831\n[ 202 ] CVE-2013-5832\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5832\n[ 203 ] CVE-2013-5838\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5838\n[ 204 ] CVE-2013-5840\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5840\n[ 205 ] CVE-2013-5842\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5842\n[ 206 ] CVE-2013-5843\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5843\n[ 207 ] CVE-2013-5844\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5844\n[ 208 ] CVE-2013-5846\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5846\n[ 209 ] CVE-2013-5848\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5848\n[ 210 ] CVE-2013-5849\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5849\n[ 211 ] CVE-2013-5850\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5850\n[ 212 ] CVE-2013-5851\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5851\n[ 213 ] CVE-2013-5852\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5852\n[ 214 ] CVE-2013-5854\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5854\n[ 215 ] CVE-2013-5870\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5870\n[ 216 ] CVE-2013-5878\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5878\n[ 217 ] CVE-2013-5887\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5887\n[ 218 ] CVE-2013-5888\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5888\n[ 219 ] CVE-2013-5889\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5889\n[ 220 ] CVE-2013-5893\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5893\n[ 221 ] CVE-2013-5895\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5895\n[ 222 ] CVE-2013-5896\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5896\n[ 223 ] CVE-2013-5898\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5898\n[ 224 ] CVE-2013-5899\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5899\n[ 225 ] CVE-2013-5902\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5902\n[ 226 ] CVE-2013-5904\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5904\n[ 227 ] CVE-2013-5905\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5905\n[ 228 ] CVE-2013-5906\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5906\n[ 229 ] CVE-2013-5907\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5907\n[ 230 ] CVE-2013-5910\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5910\n[ 231 ] CVE-2014-0368\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0368\n[ 232 ] CVE-2014-0373\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0373\n[ 233 ] CVE-2014-0375\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0375\n[ 234 ] CVE-2014-0376\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0376\n[ 235 ] CVE-2014-0382\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0382\n[ 236 ] CVE-2014-0385\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0385\n[ 237 ] CVE-2014-0387\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0387\n[ 238 ] CVE-2014-0403\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0403\n[ 239 ] CVE-2014-0408\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0408\n[ 240 ] CVE-2014-0410\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0410\n[ 241 ] CVE-2014-0411\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0411\n[ 242 ] CVE-2014-0415\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0415\n[ 243 ] CVE-2014-0416\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0416\n[ 244 ] CVE-2014-0417\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0417\n[ 245 ] CVE-2014-0418\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0418\n[ 246 ] CVE-2014-0422\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0422\n[ 247 ] CVE-2014-0423\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0423\n[ 248 ] CVE-2014-0424\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0424\n[ 249 ] CVE-2014-0428\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0428\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n http://security.gentoo.org/glsa/glsa-201401-30.xml\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2014 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n. The verification\n of md5 checksums and GPG signatures is performed automatically for you. \n\n All packages are signed by Mandriva for security. You can obtain the\n GPG public key of the Mandriva Security Team by executing:\n\n gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98\n\n You can view other update advisories for Mandriva Linux at:\n\n http://www.mandriva.com/en/support/security/advisories/\n\n If you want to report vulnerabilities, please contact\n\n security_(at)_mandriva.com\n _______________________________________________________________________\n\n Type Bits/KeyID Date User ID\n pub 1024D/22458A98 2000-07-10 Mandriva Security Team\n \u003csecurity*mandriva.com\u003e\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.12 (GNU/Linux)\n\niD8DBQFRcSLkmqjQ0CJFipgRAsEgAJ4gHSUUcP7uDS3JIxzQZxnCLwXe1QCfTQXq\no4NG1rmFdAUfR4q/O/aHdtM=\n=EXuM\n-----END PGP SIGNATURE-----\n", "sources": [ { "db": "NVD", "id": "CVE-2013-1518" }, { "db": "BID", "id": "59141" }, { "db": "VULMON", "id": "CVE-2013-1518" }, { "db": "PACKETSTORM", "id": "122278" }, { "db": "PACKETSTORM", "id": "122879" }, { "db": "PACKETSTORM", "id": "121395" }, { "db": "PACKETSTORM", "id": "127267" }, { "db": "PACKETSTORM", "id": "121321" }, { "db": "PACKETSTORM", "id": "124943" }, { "db": "PACKETSTORM", "id": "121555" }, { "db": "PACKETSTORM", "id": "121361" } ], "trust": 1.98 }, "external_ids": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "db": "NVD", "id": "CVE-2013-1518", "trust": 2.8 }, { "db": "BID", "id": "59141", "trust": 2.0 }, { "db": "USCERT", "id": "TA13-107A", "trust": 1.7 }, { "db": "CNNVD", "id": "CNNVD-201304-358", "trust": 0.6 }, { "db": "HITACHI", "id": "HS13-010", "trust": 0.3 }, { "db": "ICS CERT", "id": "ICSA-17-213-02", "trust": 0.3 }, { "db": "VULMON", "id": "CVE-2013-1518", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "122278", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "122879", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "121395", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "127267", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "121321", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "124943", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "121555", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "121361", "trust": 0.1 } ], "sources": [ { "db": "VULMON", "id": "CVE-2013-1518" }, { "db": "BID", "id": "59141" }, { "db": "PACKETSTORM", "id": "122278" }, { "db": "PACKETSTORM", "id": "122879" }, { "db": "PACKETSTORM", "id": "121395" }, { "db": "PACKETSTORM", "id": "127267" }, { "db": "PACKETSTORM", "id": "121321" }, { "db": "PACKETSTORM", "id": "124943" }, { "db": "PACKETSTORM", "id": "121555" }, { "db": "PACKETSTORM", "id": "121361" }, { "db": "CNNVD", "id": "CNNVD-201304-358" }, { "db": "NVD", "id": "CVE-2013-1518" } ] }, "id": "VAR-201304-0317", "iot": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": true, "sources": [ { "db": "VARIoT devices database", "id": null } ], "trust": 1.0 }, "last_update_date": "2024-07-23T21:23:59.799000Z", "patch": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "title": "jre-7u21-windows-i586-iftw", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=45713" }, { "title": "jre-7u21-windows-x64", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=45717" }, { "title": "jre-7u21-linux-x64", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=45705" }, { "title": "jre-7u21-solaris-i586", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=45709" }, { "title": "jre-7u21-solaris-sparcv9", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=45712" }, { "title": "jre-7u21-macosx-x64", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=45707" }, { "title": "jre-7u21-solaris-sparc", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=45711" }, { "title": "jre-7u21-windows-i586", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=45715" }, { "title": "jre-7u21-linux-x64", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=45706" }, { "title": "jre-7u21-solaris-x64", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=45710" }, { "title": "jre-7u21-windows-i586", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=45714" }, { "title": "jre-7u21-linux-i586", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=45704" }, { "title": "jre-7u21-macosx-x64", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=45708" }, { "title": "jre-7u21-windows-x64", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=45716" }, { "title": "jre-7u21-linux-i586", "trust": 0.6, "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=45703" }, { "title": "Red Hat: CVE-2013-1518", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=cve-2013-1518" }, { "title": "Red Hat: Important: java-1.6.0-openjdk security update", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=rhsa-20130770 - security advisory" }, { "title": "Red Hat: Critical: java-1.7.0-openjdk security update", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=rhsa-20130751 - security advisory" }, { "title": "Red Hat: Critical: java-1.6.0-sun security update", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=rhsa-20130758 - security advisory" }, { "title": "Red Hat: Important: java-1.7.0-openjdk security update", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=rhsa-20130752 - security advisory" }, { "title": "Red Hat: Critical: java-1.7.0-oracle security update", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=rhsa-20130757 - security advisory" }, { "title": "Ubuntu Security Notice: openjdk-6 vulnerabilities", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=usn-1819-1" }, { "title": "Ubuntu Security Notice: openjdk-7 vulnerabilities", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=usn-1806-1" }, { "title": "Amazon Linux AMI: ALAS-2013-185", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=alas-2013-185" }, { "title": "Amazon Linux AMI: ALAS-2013-183", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=alas-2013-183" } ], "sources": [ { "db": "VULMON", "id": "CVE-2013-1518" }, { "db": "CNNVD", "id": "CNNVD-201304-358" } ] }, "problemtype_data": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "problemtype": "NVD-CWE-noinfo", "trust": 1.0 } ], "sources": [ { "db": "NVD", "id": "CVE-2013-1518" } ] }, "references": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "trust": 2.1, "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" }, { "trust": 1.8, "url": "http://rhn.redhat.com/errata/rhsa-2013-0752.html" }, { "trust": 1.8, "url": "http://www.ubuntu.com/usn/usn-1806-1" }, { "trust": 1.8, "url": "https://wiki.mageia.org/en/support/advisories/mgasa-2013-0124" }, { "trust": 1.8, "url": "http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-april/022796.html" }, { "trust": 1.8, "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "trust": 1.7, "url": "http://rhn.redhat.com/errata/rhsa-2013-0758.html" }, { "trust": 1.7, "url": "http://blog.fuseyism.com/index.php/2013/04/25/security-icedtea-1-11-11-1-12-5-for-openjdk-6-released/" }, { "trust": 1.7, "url": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jaxp/rev/38d4d23d167c" }, { "trust": 1.7, "url": "http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released/" }, { "trust": 1.7, "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "trust": 1.7, "url": "http://rhn.redhat.com/errata/rhsa-2013-0757.html" }, { "trust": 1.7, "url": "http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00007.html" }, { "trust": 1.7, "url": "http://lists.opensuse.org/opensuse-updates/2013-05/msg00017.html" }, { "trust": 1.7, "url": "http://lists.opensuse.org/opensuse-updates/2013-06/msg00099.html" }, { "trust": 1.7, "url": "http://marc.info/?l=bugtraq\u0026m=137283787217316\u0026w=2" }, { "trust": 1.7, "url": "http://h20000.www2.hp.com/bizsupport/techsupport/document.jsp?objectid=c03898880" }, { "trust": 1.7, "url": "http://www.us-cert.gov/ncas/alerts/ta13-107a" }, { "trust": 1.7, "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2013:161" }, { "trust": 1.7, "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2013:145" }, { "trust": 1.7, "url": "https://wiki.mageia.org/en/support/advisories/mgasa-2013-0130" }, { "trust": 1.7, "url": "http://www.securityfocus.com/bid/59141" }, { "trust": 1.7, "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a19705" }, { "trust": 1.7, "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a19451" }, { "trust": 1.7, "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a16702" }, { "trust": 0.6, "url": "https://downloads.avaya.com/css/p8/documents/100172168" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-1569" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-1518" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-0401" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2420" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2383" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-1557" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2384" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2430" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2429" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2419" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-1537" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2417" }, { "trust": 0.5, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2422" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2424" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-1558" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2431" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2421" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2426" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-1488" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2415" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001531" }, { "trust": 0.3, "url": "https://downloads.avaya.com/css/p8/documents/100172719" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21649510" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg24034690" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg24034225" }, { "trust": 0.3, "url": "https://ics-cert.us-cert.gov/advisories/icsa-17-213-02" }, { "trust": 0.3, "url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c03809278" }, { "trust": 0.3, "url": "http://alerts.hp.com/r?2.1.3kt.2zr.xg7ek.jz8iz8..t.d3wy.82bm.bw89mq%5f%5fcviafmb0" }, { "trust": 0.3, "url": "http://www.hitachi.co.jp/prod/comp/soft1/global/security/info/vuls/hs13-010/index.html" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21640206" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21637512" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21640420" }, { "trust": 0.3, "url": "https://downloads.avaya.com/css/p8/documents/100172158" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21633170" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21640763" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21645096" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21645100" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21647384" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21643544" }, { "trust": 0.3, "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21649300" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21644918" }, { "trust": 0.3, "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21643697" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21642358" }, { "trust": 0.3, "url": "https://www-304.ibm.com/support/docview.wss?uid=ssg1s1004513" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21649318" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21643618" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21643513" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21645425" }, { "trust": 0.3, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2436" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-1491" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2439" }, { "trust": 0.2, "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2394" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2433" }, { "trust": 0.2, "url": "https://www.hp.com/go/swa" }, { "trust": 0.2, "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/" }, { "trust": 0.2, "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2432" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2423" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2469" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2443" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1717" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1716" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0505" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1518" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2419" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-3829" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5829" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5804" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1485" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5806" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5087" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2422" }, { "trust": 0.2, "url": "http://creativecommons.org/licenses/by-sa/2.5" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5075" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2426" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5084" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1711" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2461" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5820" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2470" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0547" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2451" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2459" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5823" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2460" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1713" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5784" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5830" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5800" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2456" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5803" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5086" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2383" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2423" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2447" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2452" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2445" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2450" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5778" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5780" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5073" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1493" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2446" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5069" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-5035" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1500" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5850" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2384" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1557" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2453" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0401" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5085" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2407" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2421" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2429" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5068" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5071" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0497" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5774" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5782" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1725" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5790" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5805" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5802" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5849" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1719" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2448" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2458" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5825" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0506" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1484" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2430" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2415" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3216" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1718" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5772" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5074" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2454" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2444" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5072" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2436" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4416" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1537" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2449" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0503" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2457" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0169" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3563" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0809" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5077" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1723" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1726" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1571" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5081" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5840" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5851" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2465" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2431" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2473" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5783" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2463" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2412" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5809" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2420" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0501" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2417" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2471" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2424" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5076" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5842" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1569" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1724" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5797" }, { "trust": 0.2, "url": "http://security.gentoo.org/" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5070" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1486" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2472" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1488" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0502" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5814" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5817" }, { "trust": 0.2, "url": "https://bugs.gentoo.org." }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2455" }, { "trust": 0.2, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5089" }, { "trust": 0.1, "url": "https://cwe.mitre.org/data/definitions/.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov" }, { "trust": 0.1, "url": "https://access.redhat.com/security/cve/cve-2013-1518" }, { "trust": 0.1, "url": "https://usn.ubuntu.com/1819-1/" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2440" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2435" }, { "trust": 0.1, "url": "http://www.hp.com/java" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2418" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2434" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-1540" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-1563" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2445" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2447" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-1500" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2452" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-1571" }, { "trust": 0.1, "url": "http://www.hp.com/go/java" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2448" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2454" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2446" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2444" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2450" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/openjdk-7/7u21-2.3.9-0ubuntu0.12.10.1" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4470" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3574" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3423" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3548" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3565" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0864" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3553" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2412" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3557" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2414" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4450" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0865" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4471" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3557" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3562" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3567" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-4002" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1478" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5979" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-6954" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4476" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4540" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0429" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0441" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2421" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0870" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3554" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0862" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0706" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0434" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3568" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3561" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4467" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3567" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4465" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4472" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3556" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0425" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3568" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3548" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3541" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3566" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3549" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3562" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3571" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2009-3555" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0426" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0457" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-2783" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3573" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3552" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0451" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0459" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2423" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1876" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4469" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0431" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0458" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-2548" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4448" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3521" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3564" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4465" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3569" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2403" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-2548" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0871" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2398" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0432" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0815" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0444" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1475" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3554" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4469" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3564" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3569" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3573" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0461" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0442" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0427" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3548" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2427" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3541" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3549" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3565" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0872" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0429" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3860" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3422" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0433" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3554" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3574" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4470" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0822" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3553" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3555" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3551" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0025" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1476" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0424" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0435" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3544" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0456" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4450" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0450" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4467" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0460" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3547" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-6629" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4448" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-2783" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3560" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1480" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4351" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0428" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0869" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3566" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3551" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2397" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0452" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3553" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3558" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0446" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0453" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3860" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3561" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0868" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0440" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0443" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3389" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4351" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3551" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3557" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2426.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1569.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2417.html" }, { "trust": 0.1, "url": "http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.9/news" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2419.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2436.html" }, { "trust": 0.1, "url": "https://access.redhat.com/security/updates/classification/#important" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-0401.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2430.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1537.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2415.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2422.html" }, { "trust": 0.1, "url": "https://access.redhat.com/security/team/contact/" }, { "trust": 0.1, "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1518.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2383.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1558.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1557.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2421.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-1488.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2424.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2384.html" }, { "trust": 0.1, "url": "https://access.redhat.com/knowledge/articles/11258" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2429.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2431.html" }, { "trust": 0.1, "url": "https://access.redhat.com/security/team/key/#package" }, { "trust": 0.1, "url": "http://bugzilla.redhat.com/):" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2423.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2420.html" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0507" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5870" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0503" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0419" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1558" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5818" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1541" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5889" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0449" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2440" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1540" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0385" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2427" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2437" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0445" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0500" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2468" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-3743" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0422" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0501" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5893" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3159" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3174" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5888" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0437" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1541" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0373" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0351" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1563" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5789" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0504" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1682" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5899" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5801" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0423" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5832" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5848" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0428" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0415" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1719" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1533" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2400" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1564" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3143" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0448" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0438" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5810" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5905" }, { "trust": 0.1, "url": "http://security.gentoo.org/glsa/glsa-201401-30.xml" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5904" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5831" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0422" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-3744" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5854" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2394" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0498" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5852" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5777" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0547" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0499" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0499" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0409" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1532" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2428" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4681" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2462" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0423" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5083" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0375" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2439" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2416" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3136" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0376" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5824" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3342" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5776" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1531" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0417" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0504" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1723" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5819" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0507" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1722" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5895" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2466" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0403" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0446" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-5035" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2418" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5788" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0416" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0424" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1473" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5887" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0418" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0410" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0368" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1717" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2425" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0500" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1722" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5902" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2432" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0387" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0502" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1716" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1533" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2438" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1721" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0382" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5812" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3213" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5846" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1718" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0497" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5775" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5787" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5898" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1531" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1481" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3563" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2433" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5844" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5906" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1711" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1532" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1561" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2435" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1491" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5910" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1487" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1713" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5907" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5896" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5843" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5067" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1682" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0498" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2414" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2467" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5079" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0411" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1721" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1479" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2434" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2442" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2464" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5878" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0505" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0408" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0402" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0506" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5838" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0430" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5088" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/openjdk-6/6b27-1.12.5-0ubuntu0.10.04.1" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/openjdk-6/6b27-1.12.5-0ubuntu0.11.10.1" }, { "trust": 0.1, "url": "http://www.ubuntu.com/usn/usn-1819-1" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/openjdk-6/6b27-1.12.5-0ubuntu0.12.04.1" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2431" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2426" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2421" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1569" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2420" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1488" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1518" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2419" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2384" }, { "trust": 0.1, "url": "http://www.mandriva.com/en/support/security/" }, { "trust": 0.1, "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952387" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2417" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-0401" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2429" }, { "trust": 0.1, "url": "http://www.mandriva.com/en/support/security/advisories/" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1557" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2383" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1537" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2415" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2424" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2430" }, { "trust": 0.1, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2422" } ], "sources": [ { "db": "VULMON", "id": "CVE-2013-1518" }, { "db": "BID", "id": "59141" }, { "db": "PACKETSTORM", "id": "122278" }, { "db": "PACKETSTORM", "id": "122879" }, { "db": "PACKETSTORM", "id": "121395" }, { "db": "PACKETSTORM", "id": "127267" }, { "db": "PACKETSTORM", "id": "121321" }, { "db": "PACKETSTORM", "id": "124943" }, { "db": "PACKETSTORM", "id": "121555" }, { "db": "PACKETSTORM", "id": "121361" }, { "db": "CNNVD", "id": "CNNVD-201304-358" }, { "db": "NVD", "id": "CVE-2013-1518" } ] }, "sources": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", "data": { "@container": "@list" } }, "data": [ { "db": "VULMON", "id": "CVE-2013-1518" }, { "db": "BID", "id": "59141" }, { "db": "PACKETSTORM", "id": "122278" }, { "db": "PACKETSTORM", "id": "122879" }, { "db": "PACKETSTORM", "id": "121395" }, { "db": "PACKETSTORM", "id": "127267" }, { "db": "PACKETSTORM", "id": "121321" }, { "db": "PACKETSTORM", "id": "124943" }, { "db": "PACKETSTORM", "id": "121555" }, { "db": "PACKETSTORM", "id": "121361" }, { "db": "CNNVD", "id": "CNNVD-201304-358" }, { "db": "NVD", "id": "CVE-2013-1518" } ] }, "sources_release_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2013-04-17T00:00:00", "db": "VULMON", "id": "CVE-2013-1518" }, { "date": "2013-04-16T00:00:00", "db": "BID", "id": "59141" }, { "date": "2013-07-03T19:19:05", "db": "PACKETSTORM", "id": "122278" }, { "date": "2013-08-20T17:55:00", "db": "PACKETSTORM", "id": "122879" }, { "date": "2013-04-23T20:22:00", "db": "PACKETSTORM", "id": "121395" }, { "date": "2014-06-30T23:39:28", "db": "PACKETSTORM", "id": "127267" }, { "date": "2013-04-18T00:00:20", "db": "PACKETSTORM", "id": "121321" }, { "date": "2014-01-27T18:30:13", "db": "PACKETSTORM", "id": "124943" }, { "date": "2013-05-07T20:22:00", "db": "PACKETSTORM", "id": "121555" }, { "date": "2013-04-19T19:11:00", "db": "PACKETSTORM", "id": "121361" }, { "date": "2013-04-19T00:00:00", "db": "CNNVD", "id": "CNNVD-201304-358" }, { "date": "2013-04-17T18:55:01.850000", "db": "NVD", "id": "CVE-2013-1518" } ] }, "sources_update_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2017-09-19T00:00:00", "db": "VULMON", "id": "CVE-2013-1518" }, { "date": "2017-08-14T14:10:00", "db": "BID", "id": "59141" }, { "date": "2022-05-16T00:00:00", "db": "CNNVD", "id": "CNNVD-201304-358" }, { "date": "2022-05-13T14:52:58.923000", "db": "NVD", "id": "CVE-2013-1518" } ] }, "threat_type": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "remote", "sources": [ { "db": "PACKETSTORM", "id": "122278" }, { "db": "PACKETSTORM", "id": "122879" }, { "db": "CNNVD", "id": "CNNVD-201304-358" } ], "trust": 0.8 }, "title": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Oracle Java SE JRE Unknown security vulnerability", "sources": [ { "db": "CNNVD", "id": "CNNVD-201304-358" } ], "trust": 0.6 }, "type": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Unknown", "sources": [ { "db": "BID", "id": "59141" } ], "trust": 0.3 } }
gsd-2013-1518
Vulnerability from gsd
{ "GSD": { "alias": "CVE-2013-1518", "description": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions.\"", "id": "GSD-2013-1518", "references": [ "https://www.suse.com/security/cve/CVE-2013-1518.html", "https://access.redhat.com/errata/RHSA-2013:0770", "https://access.redhat.com/errata/RHSA-2013:0758", "https://access.redhat.com/errata/RHSA-2013:0757", "https://access.redhat.com/errata/RHSA-2013:0752", "https://access.redhat.com/errata/RHSA-2013:0751", "https://alas.aws.amazon.com/cve/html/CVE-2013-1518.html", "https://linux.oracle.com/cve/CVE-2013-1518.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2013-1518" ], "details": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions.\"", "id": "GSD-2013-1518", "modified": "2023-12-13T01:22:19.904944Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2013-1518", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions.\"" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "GLSA-201406-32", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "name": "[distro-pkg-dev] 20130417 [SECURITY] IcedTea 1.11.10 for OpenJDK 6 Released!", "refsource": "MLIST", "url": "http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-April/022796.html" }, { "name": "RHSA-2013:0758", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0758.html" }, { "name": "MDVSA-2013:145", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:145" }, { "name": "TA13-107A", "refsource": "CERT", "url": "http://www.us-cert.gov/ncas/alerts/TA13-107A" }, { "name": "http://blog.fuseyism.com/index.php/2013/04/25/security-icedtea-1-11-11-1-12-5-for-openjdk-6-released/", "refsource": "CONFIRM", "url": "http://blog.fuseyism.com/index.php/2013/04/25/security-icedtea-1-11-11-1-12-5-for-openjdk-6-released/" }, { "name": "SSRT101252", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=137283787217316\u0026w=2" }, { "name": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0130", "refsource": "CONFIRM", "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0130" }, { "name": "oval:org.mitre.oval:def:19451", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19451" }, { "name": "SSRT101305", "refsource": "HP", "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880" }, { "name": "RHSA-2013:0757", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0757.html" }, { "name": "HPSBUX02922", "refsource": "HP", "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880" }, { "name": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0124", "refsource": "CONFIRM", "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0124" }, { "name": "openSUSE-SU-2013:0777", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2013-05/msg00017.html" }, { "name": "MDVSA-2013:161", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:161" }, { "name": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jaxp/rev/38d4d23d167c", "refsource": "CONFIRM", "url": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jaxp/rev/38d4d23d167c" }, { "name": "openSUSE-SU-2013:0964", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2013-06/msg00099.html" }, { "name": "RHSA-2013:0752", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0752.html" }, { "name": "USN-1806-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-1806-1" }, { "name": "oval:org.mitre.oval:def:16702", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16702" }, { "name": "59141", "refsource": "BID", "url": "http://www.securityfocus.com/bid/59141" }, { "name": "SUSE-SU-2013:0814", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00007.html" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=952646", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "name": "oval:org.mitre.oval:def:19705", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19705" }, { "name": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" }, { "name": "http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released/", "refsource": "CONFIRM", "url": "http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released/" }, { "name": "HPSBUX02889", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=137283787217316\u0026w=2" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:*:update17:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.7.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:*:update17:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.7.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update32:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update33:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update39:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update35:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update30:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:*:update43:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.6.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update34:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update41:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update37:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update38:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update32:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update33:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update38:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update30:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:*:update43:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.6.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update34:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update39:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update41:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update37:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update35:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update8:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update28:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update33:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.5.0:update38:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.5.0:update36:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.5.0:update40:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:*:update41:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.5.0", "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update33:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update7_b03:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update28:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update11_b03:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.5.0:update40:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:*:update41:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.5.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.5.0:update36:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update8:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.5.0:update38:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2013-1518" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"missing security restrictions.\"" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ] }, "references": { "reference_data": [ { "name": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html", "refsource": "CONFIRM", "tags": [ "Vendor Advisory" ], "url": "http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html" }, { "name": "RHSA-2013:0752", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2013-0752.html" }, { "name": "RHSA-2013:0758", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2013-0758.html" }, { "name": "USN-1806-1", "refsource": "UBUNTU", "tags": [], "url": "http://www.ubuntu.com/usn/USN-1806-1" }, { "name": "http://blog.fuseyism.com/index.php/2013/04/25/security-icedtea-1-11-11-1-12-5-for-openjdk-6-released/", "refsource": "CONFIRM", "tags": [], "url": "http://blog.fuseyism.com/index.php/2013/04/25/security-icedtea-1-11-11-1-12-5-for-openjdk-6-released/" }, { "name": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jaxp/rev/38d4d23d167c", "refsource": "CONFIRM", "tags": [], "url": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jaxp/rev/38d4d23d167c" }, { "name": "http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released/", "refsource": "CONFIRM", "tags": [], "url": "http://blog.fuseyism.com/index.php/2013/04/22/security-icedtea-2-3-9-for-openjdk-7-released/" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=952646", "refsource": "CONFIRM", "tags": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952646" }, { "name": "RHSA-2013:0757", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2013-0757.html" }, { "name": "SUSE-SU-2013:0814", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00007.html" }, { "name": "openSUSE-SU-2013:0777", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-updates/2013-05/msg00017.html" }, { "name": "openSUSE-SU-2013:0964", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-updates/2013-06/msg00099.html" }, { "name": "SSRT101252", "refsource": "HP", "tags": [], "url": "http://marc.info/?l=bugtraq\u0026m=137283787217316\u0026w=2" }, { "name": "SSRT101305", "refsource": "HP", "tags": [], "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880" }, { "name": "TA13-107A", "refsource": "CERT", "tags": [ "US Government Resource" ], "url": "http://www.us-cert.gov/ncas/alerts/TA13-107A" }, { "name": "MDVSA-2013:161", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:161" }, { "name": "MDVSA-2013:145", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:145" }, { "name": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0130", "refsource": "CONFIRM", "tags": [], "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0130" }, { "name": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0124", "refsource": "CONFIRM", "tags": [], "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0124" }, { "name": "[distro-pkg-dev] 20130417 [SECURITY] IcedTea 1.11.10 for OpenJDK 6 Released!", "refsource": "MLIST", "tags": [], "url": "http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-April/022796.html" }, { "name": "GLSA-201406-32", "refsource": "GENTOO", "tags": [], "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "name": "59141", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/59141" }, { "name": "oval:org.mitre.oval:def:19705", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19705" }, { "name": "oval:org.mitre.oval:def:19451", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19451" }, { "name": "oval:org.mitre.oval:def:16702", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16702" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false } }, "lastModifiedDate": "2022-05-13T14:52Z", "publishedDate": "2013-04-17T18:55Z" } } }
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.